Senior Specialist, Digital Security
- Envision Employment Solutions
- New Cairo City, Cairo Governorate, Egypt
- Full-time
وصف الوظيفة
Envision Employment Solutions is currently looking for a Senior Specialist, Digital Security for one of our partners, a multinational bank.
Responsibilities:
- Build & orchestrate security plans aligned with organizations business strategy for digital initiatives.
- Work with Cloud Security in AWS, Azure, Google or other for the defining and designing the security controls for business solutions in cloud environment.
- Work with developers and system architects on deployments to diagnose, document, and remediate deviations from security standards.
- Determine security requirements by evaluating business strategies and requirements for cloud based solutions.
- Contribute to the evaluation, recommendation, and implementation of cloud security controls in line with emerging cloud technologies and practices across group entities.
- Maintains security by ensuring compliance to standards, policies, and procedures set out by the GISO.
- Experience with development and implementation of a comprehensive and broad set of security controls for cloud infrastructure and DevOps
- Perform compliance reviews & assessments to identify security gaps, and works with different teams across the group entities to resolve them.
- Prepares security reports by collecting, analyzing, and summarizing data and trends.
- Conducts incident response analyses.
- Relevant skills include an understanding of business/technology risk, thought leadership in designing and executing cloud / technology controls that mitigate those risks, and ability to keep up-to date with the latest technologies and potential cyber-threats
- Coordinate with internal/ external teams for security assessment and reporting
- Coordinate with Group Digital Security team for ensuring alignment to Group security standards.
- Participate in Agile project meetings and provide security feedback after discussing with Head of ISO.
- Sound understanding of application architecture and application workflow to identify security risks.
- Ability to perform security assessment of application, vendor, cloud and third party assessment
إمتيازات الوظيفة
- Health insurance
- Learning, development and career progression
متطلبات الوظيفة
- Bachelor degree in Science (Computer related field)
- Overall 5+ years of experience
- 5 years+ experience in security domain
- 2 years+ experience with securing application deployments in AWS, Azure, or another similar hosted environment.
- Experience in Cloud security (IAAS, SAAA, PAAS)
- Security experience in banking domain.
- CCSP, CSA, CEH or equivalent certification in the field of cloud security
- Competencies:
- Strong research, analytic, writing and briefing skills
- Ability to effectively manage multiple, concurrent activities, while understanding and managing priorities, dependencies and risk
- Expert capabilities to research, create, develop and deliver professional briefings, multimedia presentations, and written reports to both operational and senior leadership levels
- Ability to work independently, as well as mentoring other team members
- Willingness to learn new tools and processes and proven track record of learning new technologies, methodologies, and skills
- Organizational, time management, customer service and problem-solving skills
- Demonstrated flexibility, initiative, judgment and discretion
- Experience working in cloud security domain for multi cloud vendor environment
- Skills:
- Knowledge and deep understanding of following:
- Strong working knowledge of cloud security solutions covering public, private & hybrid cloud platforms
- Security Architecture design and implementation on Azure, Google and AWS platforms
- Container system working concepts in a cloud environment e.g DOCKER, etc.
- Cloud Security related standards e.g., ISO/IEC 27018, etc.
- Cryptography (e.g. encryption, in motion, at rest, key management)
- Cloud Service Categories (e.g., SaaS, IaaS, PaaS, NaaS, CompaaS, DSaaS)
- Virtualization Security
- Cloud Software Assurance and Validation
- Security Testing (e.g., SAST, DAST, Pen Testing)
- Expertise in implementing security and identity protocols such as OAuth, SAML, SSO, OpenID, TLS, PKI (Encryption and Key Management), Top 10 OWASS
