Al Ramz PJSC
Al Ramz Corporation is looking for IT Network & Information Security Engineer. Candidate must have 4-year degree in Computer Science or related curriculum with more than 7 years of diversified experience working in more than one area of network and Information Security technologies, You will be a member of a small, based team involved in IT operations and project delivery from concept scoping design through to implementation.
Key Responsibilities
1. Information Security/Cyber Security Administration:
Analyzes and develops information security governance, including organizational policies, procedures, standards, baselines, and guidelines with respect to information security and use and operation of information systems.
Architects, designs, implements, maintains, monitors, and operates information system security controls and countermeasures.
Update the systems regularly with antivirus, firewall and spyware and protect against any kind of viruses and breakdowns in the network.
Administers authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets.
Create, oversee, and test security measures (e.g., access authentication and disaster recovery)
Responsible for completing a thorough risk assessment, identifying vulnerabilities within a network, and creating firewalls, or configuring systems to enhance existing security features.
Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets and monitors for compliance.
Responsible for the information protection, classification and ensure the data loss prevention policies and procedures are implemented and monitored.
Develops and administers, or provides advice, evaluation, and oversight for, information security training and awareness programs.
Installation and use of firewalls, data encryption and other security products and procedures.
Conduct vulnerability assessment, penetration testing, DLP, Data classification simulating an attack on the system to find exploitable weaknesses.
Ensure that the company knows as much as possible, as quickly as possible about security incidents.
Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.
Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; performs risk and compliance self-assessments and engages and coordinates third-party risk and compliance assessments.
Maintain all IT security tools and technology, regulatory compliance.
Monitor security policies, programs, or procedures to ensure compliance with internal security policies, licensing requirements, or applicable government security requirements, policies, and directives.
Work with different departments in the organization to reduce risk.
IT Security, Data Classification, Audit policies and controls continuously.
Detail out the security incident response program.
Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders.
Cloud Access Service Brokerage Administration & Management
2. Network Administration:
Plan, design, deploy, monitor, and manage functional networks (LAN, WLAN, WAN), as well as network performance monitoring and integrity.
Identify, install, and maintain upgrades to the network.
Configure and install software, servers, routers, and other network devices.
Develop a backup/disaster recovery plan for a network emergency.
Suggest improvements to network performance, capacity, and scalability.
To provide End to End L2/Tier 2 network support.
Routing & Switching, IPSEC, VPN & SSL Administration & Management
Core, Edge, TOR, Access, DMZ & RACK Switch Administration & Management
Office, DR & Market Connectivity Administration & Management
End to End Firewalls Administration & Management
NAC, Radius & 801.X Wireless Network Administration & Management
Qualifications/ Competencies & Skills
Bachelor’s degree in computer science or related curriculum
+7 years of relevant work experience
Proven experience as a Network & Information Security Engineer
Strong, clear communication skills (written, verbal, and presentation)
Outstanding leadership and organizational skills
Excellent problem-solving ability
Excellent organization and technical documentation skills
A background in financial services is a plus
CCNA, CCNP, JNCIA and JNICS or any other network certifications are required.
CISA, CISM, CCSA, CISSP, CEHv11 or any other Security certifications are preferred.
ITIL, Prince2 or PMP will be added advantage.
Experience in project management and managing multiple projects, and in both determining and building against business and technical requirements.
Strong knowledge of ITIL processes like Incident, Problem Management.