Provides detailed security assessment and review for IT security infrastructure
Reviews security requirements and assesses the security posture of current EBC payment solution and new projects to identify gaps or improvements based on risk assessments, threat modeling, and technical testing
Participates in design and initial implementation of new technical scrutiny controls
Reviews and examines systems compliance against present security standards and the PCI DSS, PCI PIN Security, 3DS, TSP, ISO27001, etc..
Configures systems to ensure its compliance with present security standards and PCI.
Audits different systems and all technical department operations against security standards and internal policies.
Analyzes new application architecture against the security standards and best practice and provide security sign-off before live deployment.
Test new security applications before its launch.
Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
Inspects for vulnerabilities and risks in hardware and software
Finds out the best way to secure the IT infrastructure of an organization
Carries out other tasks related to compliance activities as requested by management.

Bachelor’s degree of Engineering or Computer Science is a must
5+ years of relevant experience in information security risk management and assessments/audits.
Security certification CEH, CISSP, CISM is a plus.
Good knowledge about PCI DSS, PCI PIN Security, PCI 3DS, PCI TSP and ISO27001.
Good knowledge about Risk assessment methodologies and secure development lifecycle.
Experience in information security design and implementation best practices

ملخص الوظيفة

Sr. Specialist, Information Security - Risk