Assistant Manager, IT Security

Main duties

•  Security Monitoring & Incident Response:

  • Monitoring of networks and systems for security breaches by using monitoring tool like PAM, WAZUH, and Other Tool

  • Respond to secure incidents, include investigated the cause of breaches, managing the containment process, and recovering data when necessary

•  Risk Assessment & Vulnerability Management

  • Conduct regular security assessments, including vulnerability scans (Internal and External) and penetration testing (Internal and External), to identify security weaknesses.

  • Recommend and implement measures to mitigate identified risks (e.g., patches, updates, or system reconfigurations).

  • Collaborate with other departments or related Team to address security gaps and improve overall infrastructure.

•  Security Policy & Compliance:

  • Develop, implement, and enforce IT security policies and procedures to comply with industry standards, regulations, and best practices with Internal and External audit.

•  Access Control & Identity Management:

  • Manage identity and access management tools to ensure only authorized users have access to sensitive systems and data.

  • Implement and monitor multi-factor authentication (MFA) systems and strong password policies.

  • Audit and review user access logs regularly to ensure compliance with access control policies.

•  Backup & Disaster Recovery

  • Ensure the integrity and availability of critical data by implementing and testing backup and disaster recovery plans.

  • Work with Teams to restore services in the event of a cyber attack, data breach, or system failure.

•  Collaboration & Reporting

  • Work closely with departments and related Team, such as IT operations, IT development, IT Planning, and compliance, to ensure a comprehensive approach to security.

  • Prepare and deliver regular security reports to Manager and senior management, providing insights on threats, vulnerabilities, and the effectiveness of security measures.

Other main duties:

• Cybersecurity and threats hunting

• Manage and Prepared with Guideline and Hardening document

Bachelor’s degree in computer science or equivalent professional qualification

At least 3-5 years’ experience in network and security or related field

Basic knowledge of shell script in RedHat or Ubuntu operating system

Be able with Cisco router, Firewall, switch, ASA, Fort iGATE& Securing Network Infrastructure

Strong Documentation, Communication, Report Writing, and Presentation Skills

Network+, Security+, CCNA or CCNP, MTCNA certification preferred

Good conceptual, organizational, problem analytic and critical thinking skills.

Good in written and verbal communication skills and the ability to communicate effectively and all levels of the business.

Creative, dynamic, flexible, self-direct and self-motivated team player

High proficiency spoken and written of English