IT Security Specialist

**1-** **IT Security Specialist**

IT Security Specialist is responsible for security risk assessments, protection of IT assets, building of resilience to defend

against security attacks and responding to security incidents. He/She is technically proficient in IT network security and

cloud security and is also conversant with IT security frameworks/policies and procedures, e.g., ISO27001. IT Security

Specialist can also evaluate security systems including fire protection systems and theft protection and ensure that

potential safety hazards are addressed.
- Act as custodian of the organization IT Department’s Information Security policies and procedures and ensure these are

implemented successfully and review periodically.
- Liaise with the organization IS manager and internal auditors on IT security governance.
- Ensure applicable regulations, standards and audit observations are implemented with necessary controls.
- Oversee/Manage IT Budget relating to Information security.
- Define, manage, and monitor both cloud and on-premises security devices and software.
- Monitor access logs and perform periodic data audits and backups.
- Correlate network activity across networks to identify trends of unauthorized use.
- Research emerging threats and vulnerabilities to aid in the identification of network incidents.
- Monitor networks and systems for security breaches or intrusions.
- Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis,

investigation, and escalation.
- Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and

Conduct network monitoring and intrusion detection analysis using Computer Network Defense (CND) tools, such

as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host-Based Security System (HBSS), etc.
- Work directly with the organization servers and networks team; perform setup, enhancement, and maintenance tasks.

PoC and prepare report to Management.

Configure, implement, maintain all security platforms and any other related software, such as anti-virus, Anti-SPAM,

intrusion detection or intrusion prevention, firewalls and test all components prior incorporating to THE ORGANIZATION environment.
- Implement network security best practices through regular monitoring of router, switch, firewall configurations etc.
- Maintain network security devices to enable pro-active defense of networks.
- Work under strict change control processes to ensure only authorized changes are made to devices.
- prepare formal, technical incident reports if security breach occurs.
- Supports the creation of business continuity/disaster recovery plans. Conduct disaster recovery tests, publish test

results, and make changes necessary to address deficiencies.
- Make decisions to weigh relative costs and benefits of potential actions and identify the most appropriate one

**Education and Certifications**

Bachelor’s degree in communications, marketing, psychology, or a related field (or

relevant experience in these areas); master’s preferred.
- Certified Information Systems Security Professional (CISSP) and/or Certified

Information Security Manager (CISM), Certified Ethical Hacking (CEH)
- Vendor certifications in CISCO, Palo Alto, F5, Barracuda preferred.

**Experience /Skills**

Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System

(IDS), SIEMs and other Computer Network Defense (CND) security tools.
- Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux

OS, Burpsuite, Nmap, Advanced port and IP scanning tools.
- Over eight years of experience in information security, especially on a Computer

Incident Response Team (CIRT), Computer Emergency Response Team (CERT),

Computer Security Incident Response Center (CSIRC) or a Security Operations

Center (SOC).
- Over three years of experience in another IT function, especially IT Audit.
- Over three years of experience with regulatory compliance and information

security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
- Knowledge and experience in Risk management, compliance, security awareness

training and documentation.
- Upgrade Networking Security Devices Software to stable Operating Systems as per

the OEM recommendation.
- Experience with Microsoft Cloud Security solutions, Microsoft Defender EDR, Azure

Sentinel, Azure Security Center, Microsoft Cloud App Security, Microsoft 365

Security.
- Experience with Azure Key Vault, HSM modules and BYOK encryption

Experience with Microsoft Active Directory security and Azure Active Directory.

Experience with Windows OS administration, maintenance and hardening.

intrusion prevention, and other network component policies.
- Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS,

packet capture devices.
- Experience with Firewall and WAF configuration and administration.