Information Security Manager [Description] Key Responsibilities:
Develop, maintain and implement security policies, standards and procedures. Ensure projects related to Information Technology infrastructure adhere to Security by Design principles. Identity and mitigate information security risks and implement appropriate information security controls Perform PCI-DSS Assessments and fulfil PCI-DSS obligations for current and new projects and systems. Maintain and monitor existing network and security infrastructure such as Web Application Firewalls, SIEM platforms, and File Transfer platforms. Ensure the organisation complies with the relevant legal, regulatory and industry requirements. Identify threat scenarios, quantifying the risks and working out and executing effective mitigation controls. Implement and conduct vulnerability scans, network penetration tests and application security tests as required. Coordinate appropriate responses to Information Security incidents Maintain an up-to-date knowledge and understanding of the latest threats, technologies and mitigation techniques.
Information Technology or Information Security related degree from a reputable education institution Minimum 7 Years’ experience in an Information Security related position in Information Security Exposure and expertise in Security Operations Centres, Penetration testing, Identity Access Management, Endpoint, Data and Application Security and other Information Security domains. Extensive knowledge of Payment Card Industry Data Security Standard (PCI DSS)