The purpose of this role is to design the organisation's computer and network security infrastructure and protect its systems and sensitive information from cyber threats by evaluating business strategies, conducting system security vulnerability and risk analyses, and identifying risks associated with business processes, operations, and technology projects.
Requirements
- Design and develop enterprise cyber security strategy and architecture
- Evaluate security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses
- Identify risks associated with business processes, operations, and technology projects
- Design security architecture elements to mitigate threats as they emerge
- Provide product best fit analysis to ensure end to end security covering different facets of architecture
- Provide support during technical deployment, configuration, integration and administration of security technologies
- Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity
- Provide solution of RFPs received from clients and ensure overall design assurance
- Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security
- Analyze technology environment, enterprise specifics, client requirements to set a collaboration design framework/architecture
- Create complete RFPs depending on the client's need with particular standards and technology stacks
- Provide technical leadership to the design, development and implementation of custom solutions
- Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions
- Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps
- Evaluate and recommend solutions to integrate with overall technology ecosystem
- Track industry and application trends and relate these to planning current and future IT needs
- Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations
- Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security
- Support audit of security best practices and implementation of security principles across the organization
- Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers
- Provide training to employees on issues such as spam and unwanted or malicious emails
