Responsibilities

• Conduct thorough security risk assessments and identify system vulnerabilities.
• Develop and implement mitigation strategies to manage security risks.
• Develop incident plans and Lead incident response efforts, investigate security breaches, and ensure timely remediation.
• Monitor network traffic and system logs for suspicious activity.
• Conduct penetration testing and vulnerability scanning.
• Implement and manage security controls such as firewalls, IDS/IPS, and DLP tools.
• Ensure compliance with industry standards and regulatory requirements (e.g., PCI DSS, HIPAA).
• Develop security awareness training programs to stakeholders

Qualifications

• Certifications such as CISSP
• Experience with security frameworks and methodologies (e.g., NIST, ISO 27001).
• Strong knowledge of security concepts, principles, and technologies.
• Proficiency in using security tools like firewalls, IDS/IPS, and SIEM platforms.
• 8+ years of experience in IT Security