Minds United
Our client is looking for an Information Security Consultant
Kindly read in detail the JD mentioned below and if you are interested and your profile matches the Job Description, kindly apply!
Nationalities preferred: Bahraini
Job Description
Experience
The candidate must have 6-8 years of experience in Information Security solutions. Should have thorough knowledge of security controls, security principles, approaches, and security technologies. Candidate should have in depth knowledge of IT Infrastructure, Cloud Technologies, and Information Security systems, and security risk assessments.
Key responsibilities
● Perform security analysis, ensuring the confidentiality, integrity and availability of the bank’s information.
● Develop security architecture for various Information Security control systems.
● Perform Information Security Risk Assessments of new IT systems, recommend security controls to mitigate risks as needed.
● Conduct regular system tests and ensure continuous monitoring of network security, according to the threat landscape for evidence of malicious activity or intrusion attempts.
● Research and recommend/implement the security standards, systems, and best practices.
● Review system security, recommend security controls, and implement enhancements.
● Support information security projects/assignments
● Evaluate information security technologies and recommend countermeasures against threats to information
● Review technical service request and technical changes raised by IT users for Information Security risks.
Key Skills and Knowledge
● Working knowledge of IT Infrastructure, Cloud Technologies like AWS, Azure, and Information Security systems.
● In depth knowledge of IT risks, cyber security, and computer operating software like Windows, Linux, and UNIX.
● Knowledge of technology stacks used in Application development, Web applications.
● Advanced understanding of security protocols, cryptography, and security.
● Good understanding of network protocols, Source Code Reviews and OWASP Top 10 security practices.
● Ability to explain security findings to technical professionals
● Should have expertise in security measures such as firewalls, intrusion detection, and prevention systems (IDS/IPS), network access controls, and network segmentation.
● DNS, Security principles of routing, authentication, VPN, proxy services, and DDOS mitigation technology.
● Understanding of the industry standard frameworks such as ISO 27001, NIST, PCI-DSS.
Qualifications
● Bachelor’s degree in computer science or equivalent.
● Professional security training namely, Azure Solutions Architect, AWS Solution Architect.
● CISSP, CCSP, CEH is an advantage
Location: Bahrain