Check out our services
Wajdi Alkayal
Job Description
Job Summary and Purpose:
The role holder is responsible for installation and administration of all aspects of wmktech IT Security environment. This includes, but is not limited to enterprise Firewalls, SIEM, Anti-Virus, wired and wireless network. They monitor networks and systems for security breaches and intrusions and participate in incident response activities. Conduct Vulnerability Assessment, Penetration Testing and Information Security Risk assessment. Assess and recommend security solutions. Identify and implement security compliance requirements. Create and maintain security policies, procedures and standards. Maintain and administer security tools necessary to secure information and reduce risk. Develop and promote security awareness across the enterprise.
Key Accountabilities:
• Develop awareness of, and perform in accordance with, the Company’s established IT policies, procedures and methodologies
• Install, upgrade and maintain IT Security products, including Firewalls, SIEM, IDS, IPS, Web Application Firewalls (WAF), Email Security Gateway, Anti-Virus, Advanced Threat Protection (ATP), DLP and other security products.
•Document procedures, configurations, troubleshooting descriptions and problem resolution.
•Monitor and respond on a daily basis the output of various IT security systems.
•Monitoring the availability and performance of the IT systems and providing corrective actions and/or alert notifications.
•Conduct periodic network and system scans to detect vulnerabilities.
•Co-ordination of vulnerability management processes (patching, mitigation).
•Conduct penetration testing of systems before/after going live
•Conduct Information Security Risk assessments where required
•Participate in Incident Response Team.
•Assist perform Root Cause Analysis of events or incidents, including forensics analysis and malware analysis.
•Containment, remediation, reporting of incidents
•Maintain contact with IT security products vendors to obtain any specific technical information, resolving arising products issues, training needs.
•Monitoring and Analysis of information security threat alerts and advisories in public media (Blogs, Websites, Vendors, Q-CERT, etc.).
•Perform related duties as assigned by the Group Leader to enable achievement of Group’s targets and programs in the area of IT Security architectures and products.
•Generate status reports of completed assignments to provide feedback from superior.
•Participate in selection of new security products to protect and enhance the company’s defenses form cyber-attacks. Carry out technical evaluation and recommend suitable security systems.
•Participate in the on-the-job training of trainees and newly hired personnel within the Group to ensure that they develop the necessary skills to independently carry out assigned activities.
Desired Candidate Profile
• Bachelor’s Degree in Computer Science or IT equivalent degree.
• Minimum of 6 years’ hands-on experience in Information Security is mandatory.
• Certification in network security (Cisco, Palo Alto, A10, FortiGate, F5, etc.) is highly preferred.
• Certified Information Systems Security Professional (CISSP) is a plus.
• Must have a detailed and analytical approach with hands-on experience and strong problem-solving.
• Excellent interpersonal skills as well as written/oral communications skills are essential.
• Solid understanding of modern security standards, services, products, and technologies (certifications are always preferable).
• Extensive knowledge and experience in Firewalls (i.e., Cisco, Barracuda, A10, Palo Alto, F5, Fortinet, etc.) and IPSEC/SSL VPNs are mandatory.
• Extensive knowledge and experience in security solutions (i.e., NAC, MFA, EDR, PAM, IAM, etc.)
• Extensive knowledge and experience in cloud security solutions in general (i.e., Azure ATP, AWS, CASB, etc.)
• Extensive knowledge and experience in Data security and privacy solutions (DLP, Data classification, etc.) are mandatory.
• Good knowledge of SOC and major used tools like SIEM, SOAR, etc.
• Good Knowledge of at least one SIEM technology is required.
Subscribe to our YouTube channel to stay up to date on world events
Subscribe to our Twitter account to follow the most important global and regional events
Join Our Telegram Channel for More Insights
WMK Tech Copyright © 2024. All rights reserved
