Senior Specialist Enterprise Security and Architecture
Salary undisclosed
Apply on
Original
Simplified
Job Summary:
This role is an excellent opportunity for the IT Security Enterprise Architecture and Engineering team. This position will assist the Cybersecurity director to oversee and management of security infrastructure and engineering. Ideally, someone who has strong IT security skills as a core competency.
This position will have ownership to define, implement, document, and validate the implementation of security controls on DKSH infrastructures, platforms, processes, and regulatory compliance. Maintain and mature the overall Cybersecurity practices and help improve the overall security posture of the Cybersecurity function within DKSH.
General Responsibilities:
This role is an excellent opportunity for the IT Security Enterprise Architecture and Engineering team. This position will assist the Cybersecurity director to oversee and management of security infrastructure and engineering. Ideally, someone who has strong IT security skills as a core competency.
This position will have ownership to define, implement, document, and validate the implementation of security controls on DKSH infrastructures, platforms, processes, and regulatory compliance. Maintain and mature the overall Cybersecurity practices and help improve the overall security posture of the Cybersecurity function within DKSH.
General Responsibilities:
- Execute strategical direction for the function, from design and review of system architecture, planning, implementing, and maintenance of security architecture systems in DKSH.
- Access security risks and recommend mitigation strategies.
- Review and report on control effectiveness and operational efficiencies of the infrastructure and cybersecurity.
- Promote and support the “center of excellence” for cybersecurity management, continuous improvement, and optimization of security solutions and processes.
- Commissions the preparation, implementation, and validation of cybersecurity policies, standards, procedures, and guidelines.
- Support the design and operation of related compliance monitoring and improvement activities to ensure compliance with ISO27001 practices, internal security policies, and applicable laws and regulations.
- Support information security awareness, training, and educational activities by providing suitable guidance to the team.
- Commissions information security risk assessments and control selection activities.
- Support the information security incident investigation and management process and post-incident review.
- Keep abreast of the latest security and privacy legislation, regulations, adversaries, alerts, and vulnerabilities.
- Bachelor’s degree in computing/Information Technology or equivalent.
- Minimum 5 years of experience in infrastructure and security.
- Strong understanding of security principles and best practices.
- Experience and knowledge of enterprise security infrastructure and design are required.
- Experience with security assessment and testing.
- Experience with security policy development and implementation.
- Knowledge of the IT environment and solutions such as Windows/Linux OSes, AD, DNS, DHCP, IPS, AV, Routers, Switches, VM, etc. are required.
- Hands-on experience with various security technologies in areas of network security solutions, endpoint security solutions, data security solutions, cloud security, etc.
- Sense of ownership and pro-activeness in identifying, improving, and optimizing processes and mitigating gaps.
- Excellent written and verbal communication skills; interpersonal and collaborative skills; and the ability to communicate security and risk-related concepts to technical and non-technical stakeholders.
- Strong ability to work independently and cooperate with diverse teams with multiple.
Similar Jobs