QUALIFICATION: Engineering Degree/Diploma (Computers / Electronics) CERTIFICATIONS: CISSP (Mandatory) CCSP EXPERIENCE: 12+ years of IT security operations and governance. Proven experience as a Cyber Security Advisor or Lead Information Security RESPONSIBILITIES (INCLUDES ALL TASKS): Sound understanding of Security Technologies and Methodologies for Enhancing the Cybersecurity Landscape of the organization. Expert in Infrastructure and Application Security, OSI Layer and Techniques / Technologies available to protect different layers. Experienced in Vulnerability Management, Penetration Testing reviews, Malware Protection, Data Security, Web Application Security and Network Security. Good Understanding of standard and Regulations, including NIST, NESA, ISO 27001:2022. Good Knowledge on compliance Audits, Risk Assessment and Management Knowledgeable in DNSSEC, Cryptography, hardening procedures and Baselines, Windows and Linux OS. Security Awareness trainings. Security Incident Management and SOC Governance. Hands-on experience in the following: o Perimeter Security solutions like F5, Palo Alto & Fortinet firewalls, Next Generation IPS, Email and Web Gateways. o Security reports and incidents based on Imperva Database Activity Monitor (DAM), File Integrity Monitor (FIM), Tenable Vulnerability Scanner. o Access Management Solutions for PAM, PIM & IAM Data Protection technologies like Forcepoint DLP, Boldon James Classifier & Seclore DRM. o Content Filtering Technologies of CDR Technologies. o Endpoint Protection Suite from Trend Micro Apex One & Deep Security. o APT Suite from Trend Micro DDI & DDAN. Cryptographic Key Management solutions from Thales HSM Support and lead team to Operate, troubleshoot and maintain security infrastructure software and hardware for escalated issues and regular upgrades. Develop and implement security policies, procedures, and controls. Security Incident & Problem Management with strict adherence to SLAs Risk, Vulnerability Management and Reporting Manage and monitor the organization's cyber security systems and infrastructure. Track the performance of security measures to protect information of network infrastructure and computer systems. Define KRI and KPI as per agreement and provide weekly updates to stakeholders on progress and dependencies. Educate and train staff on information system security best practices. Work closely with SoC to monitor and manage Events to Incident conversions. Take actions within stipulated SLAs to close all Incidents. Comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement. Prepare and document standard operating procedures and protocols TECHNICAL SKILLS /COMPETENCIES: MANDATORY Strategic Thinking Should be able to envision long-term technical direction of the organization and create a compelling strategy to achieve the vision. Ability to align technical initiatives with overall business goals and articulate technology to drive innovation and growth. Cross Functional Collaboration Ability to work collaboratively with all departments including Customer and Internal Stakeholders Team Building and Nurture high performing teams. Decision Making Possess strong Analytical and Technical problem-solving skills to make informed decisions. Able to work under pressure, balance technical constraints, project goals, business goals to make critical decisions. Adept at handling constructive conflict resolution within the teams or between team members & other stakeholders and derive mutually beneficial outcomes. Ethical Leadership Should set high standards of Integrity and lead by example in their actions and decisions. Should showcase resilience to bounce back from setbacks and handles stress effectively. Accountability & Result Driven Should set clear goals and expectations, track progress and take corrective actions when necessary. Agile thinking with adaptability to adjusting strategies and tactics for achieving desired outcomes. SOFT SKILLS: MANDATORY: Good communication skills