POSITION DESCRIPTION
The selected candidate will be reporting to the IT Security Manager, SOC, and responsible for ongoing review and monitoring of every aspect of endpoint security devices within the bank's environment. He/she will also work closely with IT and security teams to implement comprehensive control measures to identify and address any gaps or risks within CANADIA Bank's system environment, including its data and information systems.
DUTY &RESPONSIBILITY
- Endpoint Security Management: Implement and manage endpoint protection platforms (EPP) and endpoint detection and response (EDR) solutions. And ensure all endpoints comply with security policy standards.
- Network and Infra Security: Assist in designing, implementing, and managing network security measures; monitor network traffic and security operations for potential threats; and contribute to identifying and remediating vulnerabilities in IT infrastructure.
- Incident Response: Monitor endpoints for signs of security breaches or malicious activity and support incident response efforts by investigating and resolving security incidents, ensuring timely and accurate documentation and reporting of such incidents.
- Security Policies and Procedures: Assist in developing and documenting IT security policies and procedures, collaborating with team members to ensure adherence and compliance with established security policies and procedures related to security operation tools.
- Collaboration and Communication: Collaborate with cross-functional teams to address security concerns and communicate effectively with team members and management on security-related issues and initiatives.
- Security Projects: Participate in security-related projects, such as implementing new security solutions or improving existing security measures.
- Ensure that security tools are up-to-date and effectively integrated into the network infrastructure.
QUALIFICATION
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 2 years of experience in network, security, and infrastructure roles.
- Experience managing security solutions or devices, SIEMs, Network Access Control devices (NAC), EDR, or related tools. And understanding of network protocols, architecture, and troubleshooting.
- Experience managing servers (Linux/Windows) and virtualization technologies.
- Incident Response: Skills in identifying, containing, and eradicating security threats on endpoints.
- Forensics: Ability to conduct forensic investigations to analyze endpoint breaches.
- Scripting and Automation: Proficiency in scripting languages like PowerShell, Python, or Bash.
- Knowledge of security frameworks and standards (e.g., ISO 27001, NIST).
- Good communication and interpersonal skills.
- Good problem-solving skills and the ability to work under pressure.
- Ability to work independently and as part of a team.
- Willing to learn, fast learner, flexibility, self-motivated, and "can do" attitude.
- Relevant certifications such as CCNA, CCNP, SSCP, CySA+, CND, Security+, or equivalent are a plus.