Responsibilities

• Assist in planning, management and execution of vulnerability and risk assessment projects.
• Analyse new and upcoming security solutions to protect company and client data.
• Execution of Threat and Risk Assessments of enterprise IT systems and documenting recommendations on how to mitigate risks.
• Researching and tracking information about current security threats and potential vulnerabilities.
• Assist in managing IT incidents and resulting Security investigations.
• Assist in performing policy compliance reviews of enterprise IT systems.
• Collecting, monitoring and analysing IT security metrics to measure the effectiveness of ISO’s IT security management processes and producing relevant reports.
• Documenting and updating elements of IT security governance (e.g. policies,
• procedures, standards).
• Serve as a point of contact for information security inquiries and audits

Skills & Experience

• Good understanding of the commonly used concepts, practices, and procedures within the Information Security.
• Good understanding of operating systems (Unix, Windows Mac) and network security,
• Good understanding of application security, secure programming.
• Understanding of vulnerability analysis, penetration testing, encryption technologies, intrusion detection, incident response,
• Must understand concepts and practical implementations infosec risk management, etc.
• Practical experience with deployment and/or operation of commonly used information security solutions.
• Some Experience with conducting Threat and Risk assessments and Vulnerability Assessments of IT systems.
• Basic understanding of Cloud Computing and concepts.
• Strong communication, documentation and presentation skills.