Responsible for identifying potential security risks and implementing robust solutions to mitigate them, ensuring that security is a fundamental aspect of all design and development processes. You will also be responsible for designing, building, and maintaining the security architecture of our organization. You will work closely with IT teams, management, and other stakeholders to ensure that our systems and data are protected against threats and vulnerabilities.
What you’ll do
* Security Integration: Embed security requirements and controls into the design and development phases of projects.
* Risk Assessment: Conduct thorough risk assessments to identify potential vulnerabilities and threats.
* Threat Modelling: Develop and maintain threat models to anticipate and mitigate security risks.
* Secure Coding Practices: Advocate and enforce secure coding standards and practices among development teams.
* Security Reviews: Perform security reviews and audits of system designs, architectures, and code.
* Pentest: Define and manage penetration test activities. Follow up remediations.
* Design and Implement Security Solutions: Develop and implement security architectures and solutions to protect the organization’s information systems.
* Collaboration: Work closely with developers, architects, and other stakeholders to ensure security is considered at every stage of the project.
* Incident Management: Coordinate resolution of Cybersecurity incidents.
* Training and Awareness: Provide training and guidance to development teams on security best practices and emerging threats.
Who you are
* Technical Expertise: Proficient in secure coding practices, security architecture, and threat modeling.
* Analytical Skills: Strong analytical and problem-solving skills to identify and address security risks.
* Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST).
* Proficiency in security technologies such as firewalls, IDS/IPS, SIEM, and encryption.
* Communication: Excellent communication skills to effectively convey security concepts to technical and non-technical stakeholders.
* Collaboration: Ability to work collaboratively with cross-functional teams.
* Continuous Learning: Commitment to staying updated with the latest security trends, threats, and technologies.
* Education: Bachelor’s or master’s degree in computer science, Information Security, or a related field.
* Certifications: Relevant certifications such as CISSP, CISM, or CSSLP.
* Experience: Experience in a security-focused role.
* Pentest experience would be an advantage.
* Detail-Oriented: Meticulous attention to detail to ensure all security aspects are thoroughly addressed.
* Proactive: Proactive approach to identifying and mitigating security risks.
* Ethical: Strong ethical standards and integrity in handling sensitive information.
* Adaptable: Ability to adapt to changing security landscapes and project requirements.
We recognize and celebrate the importance of diversity and inclusivity in our workplace so that we are as diverse as the customers and communities we serve. We do not tolerate any form of discrimination especially related to but not limited to race, colour, age, veteran status, gender identification, sexual orientation, pregnancy, ethnicity, disability, religion, political affiliation, trade union membership, nationality, indigenous status, medical condition, HIV status, social origin, cultural background, social or marital status.
Seniority level
Executive
Employment type
Full-time
Job function
Information Technology, Other, and Project Management
Industries
Motor Vehicle Parts Manufacturing
#J-18808-Ljbffr