Information Technology Security Specialist

Description:

As a Defensive Information Security Specialist, you will be responsible for safeguarding our organization's digital assets and ensuring the integrity, confidentiality, and availability of information systems and data. Leveraging your expertise in defensive cybersecurity measures, you will play a critical role in protecting against a wide range of cyber threats and attacks

Your primary responsibilities will include:

Conducting regular security assessments and audits to identify vulnerabilities, weaknesses, and gaps in the organization's security posture.

Implementing and managing defensive security technologies such as intrusion detection/prevention systems, firewalls, endpoint security solutions, and SIEM platforms.

Monitoring network traffic and security events for signs of unauthorized access, anomalies, or malicious activity.

Responding to security incidents in a timely manner, conducting thorough investigations, and implementing remediation measures to mitigate risks.

Collaborating with cross-functional teams to develop and implement security policies, standards, and procedures aligned with industry best practices and regulatory requirements.

Providing guidance and support to IT teams on security-related matters, including secure configuration management, secure coding practices, and incident response protocols.

Participating in security awareness training programs and promoting a culture of security awareness and compliance throughout the organization.

Keeping abreast of emerging threats, vulnerabilities, and security technologies through continuous learning and knowledge sharing activities.

Requirements:

 A minimum of 3 years of hands-on experience in the field of information security, with a focus on defensive strategies and techniques.

Network security protocols (e.g., TCP/IP, DNS, HTTP/S)

Intrusion detection/prevention systems (IDS/IPS)

Security information and event management (SIEM) solutions

Endpoint security technologies (antivirus, EDR, etc.)

Firewall management and configuration

Vulnerability management and assessment tools

Secure coding practices and principles

Understanding of Threat Landscape: In-depth knowledge of current cybersecurity threats, vulnerabilities, and attack vectors, with the ability to anticipate potential risks and develop appropriate defensive measures.

.