•Support ISRM Manager information security responsibilities. - Actively ensure appropriate administrative, physical and technical safeguards are in place to protect MMBL’s information assets from internal and external threats - Meticulously identify, introduce and implement appropriate procedures, including checks and balances, are in place to test these safeguards on a regular basis. - Thoroughly conduct and complete periodic system access reviews and audits as required engaging both internal and external resources. - Perform information security vulnerability assessments and penetration testing.- Collect, analyze and follow-up on information security events, metrics, incidents and other information that are required to achieve information security objectives; Perform or direct the performance of root cause analysis on key security events and incidents reported. - Development of alerts, use cases in SIEM for identifying security / fraud anomalies, security policy non-compliance, etc. - AV, Firewall, IPS, IDS, WAF, FIM, DAM security alerts monitoring and threat intelligence gathering / consumption. - Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources. - Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack. - Ensure that all Information Security incidents are logged and maintain the MIS of logged incidents. - Manage the Inventory of all Information Assets. - Determine and manage the implementation of administrative, technical and physical security controls as required to maintain confidentiality, integrity and availability of information systems. - Participate in the BCP/DR Drills. - Ensure effective staff training programs are in place to increase security awareness across MMBL. - Evaluation of Operating System (OS) updates and recommend appropriate vendor patch/update based on threat intelligence. - Ensuring that only approved changes are implemented in the production environment after robust testing. - Conducting routine reviews of MMBL’s networks to ensure compliance with established policies and standards. - Performing technical Information Security risk reviews for all applications and Software. - Ensure OS hardening and effective patch management. - Collaborate with your peers and stakeholders to add to the collective innovative thinking that can drive new business ideas for MMBL.- Perform any associated new technology research and horizon scanning. - Keep abreast of latest security vulnerabilities and market news, to assess threat of new security risks and take appropriate actions. -Knowledge and understanding of emerging technologies including but not limited to mobile technology.-The ability to work independently as and when required by the manager depending upon nature and criticality of task assigned-Perform tasks as when required by Manager
• BCS/MS in Computer Science or Information Security • Has 2-3 years of Information Security experience. • CEH certification is mandatory • Having experience of at least L0 – SOC
• Proficient in MS Office • Sound communication and interpersonal skills • Hands on experience on Information Security Tools • Hands on experience in fine tuning / parsing for SIEM. • Ability to prioritize and handle multiple tasks in a high- pressure environment. • Innovation in semantic layer and presentation layer to enable business stakeholders better • Should be able to analyse, understand and recommend solutions to complex problems
BS Computer Sciences or MS Information Security
• Proficient in MS Office • Sound communication and interpersonal skills • Hands on experience on Information Security Tools • Hands on experience in fine tuning / parsing for SIEM.
• Ability to perform multiple tasks in a high- pressure environment. • Innovation in semantic layer and presentation layer to enable business stakeholders better • Should be able to analyse, understand and recommend solutions to complex problems