Information Security Specialist

Roles and responsibilities

Requirements

Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.

Troubleshooting security and network problems.

Responding to all system and/or network security breaches.

Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.

Participating in the change management process.

Testing and identifying network and system vulnerabilities.

Daily administrative tasks, reporting, and communication with the relevant departments in the organization.
Risk Assessment & Management
Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential threats and weaknesses in the IT infrastructure.
Evaluate risk management strategies and prioritize security measures based on the severity and likelihood of potential security threats.
Develop and recommend strategies to mitigate risks and improve the security posture of the organization.
Security Policy & Procedures Development
Develop, implement, and update information security policies, procedures, and guidelines to ensure compliance with industry standards, regulations, and best practices.
Ensure that security policies are up-to-date and reflect the latest threats, technologies, and legal requirements.
Work with senior leadership to ensure alignment between the organization’s security policies and business goals.
. Incident Response & Investigation
Lead or participate in incident response efforts, including identifying, containing, and analyzing security breaches or incidents.
Coordinate with internal teams and external stakeholders (e.g., law enforcement, regulatory bodies) when necessary.
Investigate security incidents and root causes, documenting findings and recommending improvements to prevent future occurrences.
Network & Systems Security
Design and implement security measures to protect networks, systems, and applications from unauthorized access, malware, and cyberattacks.
Configure firewalls, intrusion detection/prevention systems (IDS/IPS), and other security tools to safeguard the organization’s network.
Monitor network traffic for suspicious activity and take corrective actions as necessary.

Desired candidate profile

A degree in computer science, IT, systems engineering, or related qualification.

2 years of work experience with incident detection, incident response, and forensics.

Experience with Firewalls (functionality and maintenance), Office 365 Security, VSX, and Endpoint Security.

Proficiency in Python, C++, Java, Ruby, Node, Go, and/or Power Shell.

Ability to work under pressure in a fast-paced environment.

Strong attention to detail with an analytical mind and outstanding problem-solving skills.

Great awareness of cybersecurity trends and hacking techniq
Data Protection & Encryption
Implement data protection measures, including data encryption, access control, and secure storage solutions, to ensure the confidentiality and integrity of sensitive information.
Work with other departments to ensure that data retention and disposal practices meet regulatory and organizational standards.
Advise on the secure management of data across its lifecycle—from creation and storage to sharing and deletion.