Summary:
We are seeking an Information Security Engineer to support the IT Digital team (web/mobile). The position will include a mix of compliance related work (60%) and security administration duties (40%).
· Compliance work will include the management, planning and execution of security audit, collection of evidences, and follow-up on daily, monthly, yearly tasks.
· Plan and participate in PCI audit preparation, 3rd party audit, run reports, participate in remediation projects.
Requirements:
· Current security certification such as CISSP, CISA or other audit certifications are preferred.
· Require experience managing audits, planning tasks, prioritizing, compliance reporting.
· Should have knowledge and experience working with PCI standards.
· Should have experience working with system, firewall, database, application logs.
· Understanding of technical aspect of information security including TCP/IP, Firewall, Encryption, Certificates, IPS, syslogs and SIEM, Antivirus, APT, SIEM, OWASP.
· Must be experienced in Microsoft Active Directory, security settings, group policies.
