Main Responsibilities & Duties
Primary Responsibility #1 - Global security lead for information security technologies in CWT
Work on datasets such as network packets, security device logs to identify any security vulnerabilities and gaps.
Manage, maintain, and deploy global security services/tools to protect the environment, including vulnerability management, endpoint protection, and network protection technologies
Evaluate, design, implement, monitor and support security infrastructure including IAM, IPS, SIEM, Endpoint agents, WAF’s, DLP, WCF, and other tools or systems.
Perform vulnerability testing, risk analyses and security assessments
Create new ways to solve existing production security issues using security tool
Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors
Evaluates and develops secure solutions, based on approved security architectures. Analyses business impact and exposure, based on emerging security threats, vulnerabilities and risks
Collaborates with colleagues and across departments to enhance security and efficiency
Assist during internal and regulatory compliance audits, PCI, SOC2, etc.
Cloud Security Access Broker, Mobile Security (iOS and Android)
Knowledge in IDS, IPS, Firewall, Data Leak Prevention tools
Primary Responsibility #2 - Assists in the incident investigations and response process
Knowledge in programming using scripting tools and enterprise software development tools such as Java
Stay abreast of the latest vulnerabilities and exploits
Work with the Security Operation Center is develop solutions/configurations to address threats
Participate in the on-call rotation for security services outages and incident escalations
Ability to present security technologies, risks, solutions to management in business context
Deliver technical reports and documentation on solutions and incidents
Contributes to the development and maintenance of the CWT information security strategy
-Bachelor's Degree in Computer Science or related field or equivalent experience and
-Certified Information Systems Security Professional (CISSP) and/or
Certified Cloud Security Certification (CCSP) and/or
-AWS certifications (or ability to obtain within 6 months
-5-10 years of hands on experience in all technical security domains
-Strong technical background and great understanding on emerging security trends
-Background and style that elicits respect in the organization through management style, technical depth, customer service and results
-Ability to influence others where there is no direct authority
-Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile
-Hands on technical expertise on all IT areas
-Scripting, coding, or automation skills (Python, Perl, Java, .NET)
-Data analysis, Network, OS systems (Windows, Unix, Linux)
-Ability to present security technology / solution in business context
