Description de l'annonce:

Education / Certifications:

University degree in relevant field.

Experience:

At least 10 years of experience, with a minimum of 5 years in the Information Security field.

Required knowledge: 

-  Knowledge and understanding of at least three of the 10 recognized information security domains: Access Controls, Application Security, Cryptography, Risk Management, Compliance and Investigations, Operations Security, Physical Security, Security Architecture and Telecommunications Display knowledge of database technologies (Oracle, SQL Server, Sybase);

-  Display knowledge of Operating Systems (Windows, Unix and Linux);

-  Display knowledge of Networks and firewalls;

-  Display knowledge of IT processes: application development, change and release management, incident and problem management, software asset management, IT risk management, security management, data management;

-  Certification such as Certified Information Systems Security Professional (CISSP) and/or Systems Security Certified Practitioner (SSCP) will be advantageous;

-  Skills related to Risk Management, Auditing, Business Continuity & DRC will be advantageous;

-  Ability to develop policies, guidelines, standards & procedures;

-  Ability to communicate effectively, both verbally and in writing;

-  Incident analysis & risk assessment skills;

-  Strong coordination and follow-up skills;

-  Excellent interpersonal skills for handling diverse situations.

  Principal Responsibilities and Deliverables of Role:

-  Design & Development of Information Security Policy & Program;

-  Ensure and enforce the implementation and enforcement of ABCT information security policy & program, to coordinate all key information security tasks, and to be a member of the information security committee;

-  Respond to Information Security Incidents;

-  Control Accesses.