Security Architect

• The candidate should have a Bachelor's degree in Computer Engineering with 12+ years of relevant experience in Cyber Security.
• The candidate should have played the Security Architect Role.

• Infrastructure and Network security
• Security Zones
• Network Segmentation and Segregation
• Firewall security
• IDS/IPS placement
• SIEM tools
• Wireless Security
• Endpoint security
• Data Loss Prevention
• Web Application Security
• Identity and Access Management
• Syslog Management
• Access control provisioning (RBAC, DAC, MAC, etc.)
• Threat Hunting/Threat Intel
• Cloud Security

• The candidate should be able to understand the current system security measures and implement security enhancements in line with the organization's goals and objectives
• Conduct regular system tests and audits by validating and verifying technical controls in minimizing the risk
• Good understanding of business requirements, identify key security requirements and articulate it to business effectively and efficiently in terms of actual risk and safeguards, risk management
• Good understanding of guidelines such as MAS TRM, ISO, and NIST standards or equivalent
• Good knowledge of Security Incident Response and run book preparation for emerging and new threats, applying safeguards where possible to minimize the threat.
• Sound understanding of Ransomware, XSS, Injection, and other similar attacks
• Participate in various business meetings to understand the entire data flow and recommend security solutions to mitigate the concerns/risks
• Good knowledge and understanding of encryption technologies (both symmetric and asymmetric algorithms) and their applications
• Participates in various compliance programs, audits the report, and recommend to reflect the accurate security posture to make business decisions
• Establish and oversee a formal vulnerability and testing program.
• Oversee the patch cycle and ensure that patches are performed at regular intervals
• Participate in Account Recertification programs and be a key player to take ownership and sign appropriate forms necessary as security exceptions
• Liaise with Internal Audit, Corporate Compliance, Office of General Counsel, and Risk.
• Conduct security campaigns for organizations such as Phishing, Data Leakage, etc.
• Management to remediate new and outstanding issues; track security-related issues in the GRC system.
• Participate in design activities and provide various solutions to ensure security is not compromised at various phases of the program lifecycle
• Recommend and provide templates where possible for end-users to assist in minimizing the security risks
• Have good knowledge and understanding of the attack vectors, provide solutions during the design phase to the programs on minimizing them with appropriate security controls necessary.
• Train other staff and external clients as necessary.

• Strong analytically with a natural ability to solve complex issues.
• Excellent team player & lead with a pro-active, positive personality and "can-do" attitude.
• Ability to prioritize and multitask. Flexibility and adaptability in work approach.
• Calmness and clarity of thought under pressure and ability to maintain confidentially.
• Demonstrated leader with team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles.
• Able to multi-task and prioritize incidents & requests accordingly.
• Customer-focused with strong communication, Strong written and verbal communication skills.

• The candidate should have a Bachelor's degree in Computer Engineering with 12+ years of relevant experience in Cyber Security.
• The candidate should have played the Security Architect Role.
• The candidate should have a good understanding and working experience in many of the cyber defense technologies:

Ariston Services