Description:
The purpose of the role is to support the Information Security Managers to ensure the Central Bank's systems and data are adequately protected. This role will specialise in one of three defined areas of Information Security: 1. Architecture and Projects, 2. Security Operations, 3.Goverance and Risk. The role will deliver key skills and experience to effectively fill the requirements of an Information Security function across multiple disciplines, while still having the ability to back-fill the other defined areas within the Team in order to maintain the integrity and security of the Central Bank’s Information Security
- Operate and Lead the development of common set of security tools and proceses, eg. Threat Intelligent service, Vulnerability management (Nexpose, Qualys), SIEM (ArcSight, Splunk), PAM (CyberArk), Database Monitoring (Imperva,Qualys).
- Work closely with the Information Security Manager and other Specialists, the Configuration Team and Infrastructure Team to contribute to the effective implementation of changes from a security perspective.
- Manage and review security events and incidents and that have been escalated from from the Information Security operations team.
- Review logs and alerts to monitor system security events, and develop use cases to improve the operation of security services.
- Act as part of the Incident Response Team to ensure Information Security concerns are addressed. Lead in incident response and forensic investigation
- Help the team drive continual improvements to the company’s internal and external vulnerability management processes.
- Provide guidance on Information Security to the Business so they are aware of the Central Bank’s Information Security policy and standards.
- Assist in Information Security risk assessments, ensuring any risks are documented and escalated to the Information Security Managers.
- Own any potential incidents, ensuring all incidents are effectively managed and a clear and concise communication plan is provided to Senior Management / other stakeholders so the integrity of the Central Bank’s Information Security is maintained. In the event of any major incidents, escalate same to the Information Security & Risk Manager to ensure these are effectively managed.
- Provide guidance on Information Security to the Business as a subject matter expert so all Development teams are aware of the Central Bank’s Information Security policy and standards.