Lead IT Security Engineer

ASA

ASA

ASA

Follow

More jobs from this company

Summary

  • Vacancy: 01
  • Location: Dhaka
  • Experience: At least 8 years
  • Published: 19 Nov 2024

Requirements

Education

  • B.Sc./M.Sc. in CSE/IT/MIS/Software Engineering/ECE/EEE or equivalent and relevant engineering degree.

  • Having the Certification: OSCP/CEH (Practical) is mandatory. OSWP/OSCE/OSEE/OSWE/CISSP/CREST will be considered as added advantage.

Experience

  • At least 8 years

Additional Requirements

  • Age at most 40 years (as per NID card).

  • Working experience before completing bachelor degree is not acceptable.

  • Manage overall IT security operations.

  • Experience with one or more IT security frameworks such as CIS, NIST, GDPR, ISO 27001: 2022 ISMS.

  • Deep knowledge in application of Security Operations Center (SIEM, PAM, DLP, NMS, A-APT, Firewall, IDS/IPS,XDR,WAF, Load Balancer etc.) is mandatory.

  • Hands-on experience with Vulnerability Assessment (VA) and Penetration Test (PT) tools, incident response and investigation activities.

  • In-depth understanding of system, network architecture, access control, identity and authentication.

  • Deep understanding of data and asset security including but not limited to classification of data and assets, data ownership, storing and disposing of data and data & asset security.

  • Understanding of the domain of security models and design including design principles, and security models of physical and logical security.

  • Understanding and knowledge of SDLC, Software development security principles including web application security and design pattern.

  • Hands on in scripting languages like Powershell/bash or Ruby/Python.

  • The applicants should have experience in the following area(s):

  • Out of 8 years, minimum 5+ years supporting a SOC team or similar.

  • Experience in configuring and implementing open source and commercial technical security solutions, such as firewalls, intrusion detection system, SIEM.

  • Excellent technical aptitude, resourcefulness, and critical thinking skills.

  • Experience with common operating systems (Windows, *nix) and networks.

  • Managing IT security team

  • Meticulous reporting skills.

  • Hands-on with incident response and investigation activities.

Responsibilities & Context

ASA is one of the biggest MFIs in the country as well in the world with more than 26 thousand employees serving around 70 lakh clients across the country. Here all the applications are developed by our in-house IT team. ASA is in the process of digital transformation of its 3073 branches’ operations involving per day more than 90 (ninety) lakh transactions in the system of more than 26000 users. ASA welcomes you to take part in the initial challenges of this transformation.

  • Lead a team of security engineers, providing mentorship, training, and support to develop their skills.

  • Collaborate with other IT leaders to ensure seamless integration of security practices into IT processes and projects.

  • Responsible for developing best security practices, standard and monitoring system for any security beaches involving ICT operation and maintaining IT security operational center (SOC) in compliance with security standard requirements.

  • Ensure that newly acquired technology complies with the IT security regulations.

  • Determine the cause of internal and external data breaches and instituting appropriate corrective action.

  • Provide updates and identify threats to Development Security organization continuously to improve processes through automation and tools creation.

  • Harden software and hardware configurations.

  • Create and maintain documentation of IT security technology procedures, processes, configurations and diagrams.

  • Monitor and analyze logs and alerts from a variety of different technologies across multiple platforms to identify security incidents.

  • Develop mitigation and remediation plans as a result of vulnerability assessment findings.

  • Ensure that processes related to the IT Security are in place in accordance with industry best advanced practices.

  • Facilitate discussions with stakeholders and suppliers as to how best practices might be adopted in the management of the IT security if required or requested to.

  • Ensure that the processes are documented, and duly managed in order to effectively deliver the required Security measure for the protection of Computer Systems, Networks and Information.

  • Undertaking any other lawful responsibilities as assigned by the office/supervisor.

Compensation & Other Benefits

  • Salary: TK 1,50,000 (per month)

  • All other admissible benefits like Contributory Provident Fund, Gratuity, Yearly Increment, Festival Allowance, Naboborsho Allowance (Boishakhy) and Employee’s Group Benefit Fund will be attributed.

Workplace

Work at office

Employment Status

Full Time

Job Location

Dhaka

Source link

To apply for this job email your details to admin@chakricircular.com

Related Jobs:

  1. Deputy Head of HR, ASA International Office Dhaka
  2. Fintech Specialist
  3. Fintech Specialist
  4. Management Trainee Officer (MTO), ASA International
  5. Senior Lead System Engineer