Scope of Work Objectives:
• Enhance the overall security posture of the IT infrastructure.
• Identify, assess, and mitigate security risks and vulnerabilities.
• Ensure compliance with relevant security standards, regulations, and best practices.
• Respond promptly to security incidents and breaches to minimize impact and mitigate risks.
• Educate staff members on security awareness and best practices.
Responsibilities:
• Conduct regular security assessments, including vulnerability scans, and risk assessments.
• Advise on security controls, such as firewalls, intrusion detection systems, antivirus software, and encryption protocols.
• Monitor network traffic for suspicious activities and unauthorized access attempts.
• Maintain up-to-date knowledge of emerging threats, vulnerabilities, and security technologies.
• Collaborate with other IT teams to integrate security measures into the development and deployment processes.
• Provide guidance and support to IT staff and end-users on security-related matters.
• Investigate security incidents, analyze root causes, and implement corrective actions.
• Prepare and present reports on security metrics, incidents, and compliance status to management
. • Participate in security audits and assessments conducted by internal or external parties.
Deliverables:
• Security risk assessments and vulnerability reports.
• Security policies, procedures, and standards documentation.
• Incident response plans and post-incident reports.
•Security awareness training materials and sessions.
• Regular reports on security metrics, incidents, and compliance status.
• Excellent verbal and written communication skills.
• Ability to work both independently and as part of a team.
• Knowledge of Networking (Firewall, Networking Protocols);
• Working knowledge of Rapid 7 • Working knowledge of CrowdStrike
• Working knowledge of Information Security Domains
• Working knowledge of Security protocols
• Working knowledge of Cloud computing