Security Assurance Manager

Компания: Henderson Scott
Вид работа: Другo
Заплата:
85 000 - 90 000 GBP/Година

Security Assurance Manager - Remote based - 90k + Bonus - 112k OTE

Global Technology Service Provider are recruiting for an additional Security Assurance Manager to join a well established and successful Security team.

The Security Assurance Managers (SAM) are dedicated Information Security resources assigned to large enterprise customers and function as a security overlay for the managed services division. They act as a trusted advisor on security governance and best practice and work with the technical, service and project management teams to ensure a client's services are delivered in accordance with good levels of security governance.

Key Responsibility Areas:

  • Should be effective within customer-facing environment, set and manage expectations with client stakeholders and team members
  • Demonstrated ability to make and take responsibility for decisions on major technical issues
  • Thorough knowledge and experience of security standards and best practices, and the ability to perform security architecture analysis
  • Leverage Open-Source Threat intelligence (OSINT) and apply it to a customer's environment
  • Review, monitoring and remediation of security threats and vulnerabilities
  • Develop and maintain security profiles, policies and procedures
  • Service evolution recommendations
  • Customize and configure technical security controls.
  • Review/advise/consult on vulnerability scanning output, and steer remediation/mitigation activities
  • Develop, optimise, and review Firewall rules
  • Set and implement security standards across business unit

Technical Requirements:

  • Familiarity with Scripting, ability to review and analyse security events and alerts and provide customer with a high level summary of any ongoing or potential threats across the following.
  • Perform Firewall Rules Reviews (expertise in Palo Alto/Cisco ASA Firewalls, Checkpoint or similar platforms).
  • Fortigate experience - consulting/architecture background would be very beneficial. A large part of the security infrastructure is based on Fortinet products
  • Knowledge and experience of LAN security methodologies such as NAC
  • Hands on experience of SD-WAN technologies, also familiarity with the SASE framework
  • Hands-on experience on Palo Alto modules (IDS/IPS/Wildfire/Site-to-Site VPN support, URL Filtering, Threat Protection: Anti-Virus, Anti-Spyware, Vulnerability Protection, Data Filtering (DLP), QoS, Policy Based Forwarding, SSL Decryption, DoS Protection, Zone Protection, Dynamic Block Lists, Certificate Management, Netflow)
  • Provide knowledge and technical configuration guidance across
    • Firewall configuration
    • Network and Host based Intrusion Detection/Prevention Systems
    • Network-based Distributed Denial-of-Service (DDoS/Arbor) mitigation services
    • Log management services (ie. LogLogic)
    • Threat management services
  • Thorough understanding of encryption technologies and best practices, such as PKI, IPSec, best practices for encryption of data at rest and in transit, obsolete protocols and ciphers
  • Good understanding of endpoint anti-malware and related reporting
  • Ability to review vendor vulnerability announcements, interpret them and describe the actual risk to the environment using both the CVSS scoring and a risk-based assessment
  • Good understanding of the security incident response process
  • Work with the managed services teams and research required security patching for Windows, Linux and VMware (ESX) Servers
  • Perform OS hardening reviews (Windows/Linux/UNIX) and provide recommendations
  • Maintain documentation around the various security services and related site-specific procedures.
  • Review and update Security Policies and Procedures on an on-going basis.

Recommended Certifications for the role:

  • CISSP (Certified Information Systems Security Professional)
  • CISM (Certified Information Security Manager)
  • CISA (Certified Information Systems Auditor)
  • CEH (Certified Ethical Hacker)
  • CSSLP (Certified Secure Software Lifecycle Professional)
  • CRISC (Certified in Risk and Information Systems Control)
  • Cisco - CCIE Security, CCNP, CCSP, CCNA
  • GIAC Security Essentials (GSEC)
  • EC-council Certified HIPAA Professional (CHP)
  • Checkpoint - CCSA, CCSE, CCSE Plus, CCMSE
  • Fortinet Network Security Expert (NSE)
  • Juniper - JNCIA, JNCIS, JNCIP
  • ITIL v3.0/ITIL v4.0

Security Assurance Manager - Remote based - 90k + Bonus - 112k OTE

ОтпечатайДокладвай

Кандидатствайте за тази работа