- Lead the formulation and execution of our organization's cyber security strategy.
- Provide expert insights into threat detection, incident response, vulnerability management, and risk assessment.
- Perform risk assessments and gap analyses to identify potential security risks and provide recommendations for mitigating those risks.
- Collaborate across departments to ensure seamless integration of security measures.
- Stay abreast of evolving security trends and apply knowledge to enhance our security posture.
- Assist in the development and delivery of security awareness and training programs for employees.
- Participate in the creation and maintenance of disaster recovery and business continuity plans.
- Support audits and assessments by providing necessary documentation and information related to IT security practices.
- Conducting Essential Cybersecurity Controls, (ECC) reviews and ensuring alignment with NCA-ECC Controls and standards requirements.
- Support to implementation of NCA-ECC, Controls as per the National Cybersecurity Authority compliance and related standards.
- Solid understanding and practical experience in end-to-end security architecture. Good experience with OS, Network and Security minimum-security baselines standards
- Cybersecurity Resilience, Business continuity (BCP), Business Impact Analysis (BIA) & Disaster recovery (DR) experiences and solid knowledge.
Requirements
- Bachelor degree in Cyber security \ Information Security \ Computer Science or related field
- Minimum of 5-10 years of demonstrated experience in a senior cyber security role.
- Minimum of 3-5 years of demonstrated experience in a IT Security Analyst (L2) role.
- Profound understanding of security frameworks, compliance standards, and industry regulations.
- Proficiency in security tools including intrusion detection/prevention systems, firewalls, SIEM, etc.
- Strong communication skills to convey complex security concepts to non-technical stakeholders.
- The Senior Cyber Security Professional should possess the following qualifications and skills:
- Hands-on experience in the end-to-end design, build, and delivery of enterprise security, and Managed IT Services.
- Hands-on experience in the configuration and management of Firewall systems, particularly with FortiGate and Palo Alto firewalls, as well as a proficient understanding of Network Access Control (NAC) devices. This expertise is integral to ensuring the robustness of our cybersecurity infrastructure.
- Good understanding of Cybersecurity Event Logs and Monitoring Management
- Good understanding of Cybersecurity Incident and Threat Management SOC processes, KPIs, OLA, and SLAs.
- Strong project management, project delivery, and team management skills.
- Proficiency in leading teams, problem management, and risk management.
- Strong skills in core network infrastructure and Sec Ops.
- Solid background working with Firewalls, NAC, VPN, Offensive Security, SIEM, SOAR, PKI, MFA, Threat Intelligence, Cloud Security, WAF, and IR.
- Up-to-date, detailed knowledge of the IT security industry, including awareness of IT/OT cyber-security (Vulnerabilities Management, Penetration Testing (VA/PT), Industrial Controls Systems (ICS ) IT / OT, SCADA, NIST SP-800-52, OWASP, ICE 62443, ISO-27001). NCA -ECC OTCC-TCC-DCC OSMACC & CCC
- Advanced certifications Preferred – CISSP, CISA, OSCP, CCIE SEC AZ -500, NSE4, MCSE, Cloud Security Certs, CCSP.
info@inboxbiz.com
Inbox Business Technologies · Islamabad, Pakistan
4705
4705
4705