Information Security Manager

☑ Основы вакансии:

Опыт работы: более 6 лет.

Тип занятости: полная занятость.

График работы: полный день.

Зарплата: по результату собеседования.

Примерное место работы: Республика Казахстан, Астана.

☑ Актуальность объявления:

Это объявление № 29107709 добавлено в базу данных: Понедельник, 29 апреля 2024 года.

Дата его обновления на этом интернет-ресурсе: Понедельник, 3 июня 2024 года.

☑ Репутация компании "ТОО KPMG":

Читайте свежие отзывы сотрудников об этом работодателе здесь!

Оставить своё мнение об этой компании тут без регистрации и бесплатно.

☑ Подробности о вакантном месте:

What we do

KPMG is a global network of professional services firms. Across 143 countries and territories, 265 000 KPMG people provide Audit, Tax and Advisory services to a huge range of clients, from leading brands to public bodies, global multi-nationals and local businesses.

We are looking for Information Security Manager to join our Quality Risk Management team in Almaty / Astana / Tashkent.

Responsibilities:

• Investigation of correlated security event feeds, and the appropriate triage and escalation in case of an identified security incident or data breach
• Implement and manage the monitoring and incident handling program including the technologies, processes, training, and documentation needed to ensure the firm can effectively detect and respond to security incidents
• Manage data breach response coordination in the event of an actual incident
• Spearhead the development of programs for vulnerability assessments, security monitoring, security metrics, and reporting
• Provide a technical resource and escalation point for Tier 1 and Tier 2 analysts
• Performs activities including planning, providing technical leadership, and tracking projects and key task dates
• Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
• Drive the cybersecurity metrics program and portfolio planning processes for the cybersecurity team
• Mentor, empower, and develop a team of Security Engineers while building an environment conducive to the growth, development, and high team morale
• Consult with IT teams on the development of new security controls and governance practices
• Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy
• Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
• Partners with teams across Firm to socialize control owner responsibilities and foster partnerships through the continuous verification and validation process
• Advise on the implementation of compensating controls or stopgap measures using custom development, the purchase of commercial products, or use of open-source solutions
• Track broad-spectrum security remediations identified by team’s technical verification and validation efforts
• Align deliverables and engagements with expectations of leaders across firm, communicate findings, and collaboratively remediate issues with a focus on automation
• Mature and manage domain and email-based threat intelligence and threat analytic functions in order to provide related threat intelligence information for effective security operations and security incident response, focusing on events that are likely to lead to a compromise
• Oversee the Incident Response (IR) program, including documentation, awareness, exercises, and response through all phases of an incident to include post-incident documentation and coordination
• Attend Change Advisory Board (CAB) regularly and ensure that patch changes are scheduled and implemented in accordance with policy
• Prepare and distribute monthly Status Reports to System Owners with their vulnerability scores on security and compliance, among others.

Requirements:

• 10+ years of experience in Information Security
• 5+ years leading high performing and highly technical teams
• Solid experience with ITIL and NIST 800-62
• CISSP certification, or at least CISM from ISACA, preferred
• Industry certifications such as GCIH, GCIA, etc. a plus
• Extensive experience in Cyber Security Incident Response. This will include - Intrusion Detection, Network Traffic Analysis, Cyber Threat Hunting
• Solid experience in enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, and covering tracks;
• Experience with DDoS, XSS attacks, SQL injection, and attacks in progress
• Proven experience with CASB and Cloud based logging and SIEM solutions and data loss prevention
• Understand threat analysis models like MITRE ATT&CK Framework
• Knowledge of general attack stages, including foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, and covering tracks
• Enterprise-level experience performing incident triage, analysis, response, and remediation for computer network intrusions, web application and server attacks, insider threats, and malware infections
• Experience with a variety of operating systems, Cloud Data Platforms (GCP, AWS, Azure) and Cloud Computing (SaaS, PaaS, IaaS)
• Experience with secure architecture principals, secure SDLC, security system integration and configurations, and troubleshooting
• Experience performing incident triage, analysis, response, and remediation for computer network intrusions, web application and server attacks, insider threats, and malware infections
• Strong understanding of most of the following common security compliance frameworks, controls, and best practices: (SSAE 16 - SOC 2 and 3), OWASP Top 10, SANS, NIST
• Experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC) is a must
• Produce high quality oral and written presentations, communicating complex technical matters clearly and concisely with audiences ranging from peers to senior management
• Fast learner, team player, problem solver, ability to work in fluctuating workload environment and with a globally dispersed, cross-cultural team
• Demonstrated ability to team across organizational boundaries and geographical locations to collaborate with and influence others.

We offer:

• Comprehensive remuneration package
• A wide range of training and development programs
• Opportunities for further development of professional skills through participation in diverse projects with international focus.

☑ О компании:

Логотип (эмблема, торговая марка, бренд) компании:

Сфера деятельности компании: Финансовый сектор; .

☑ Отклинуться сообщением, резюме, запросить телефон, отправить жалобу (претензию):