Job Title: Cyber Security Consultant Location: Dubai, United Arab Emirates Role Type: Permanent
Description Our client is a global player in providing airside solutions to increase safety, efficiency and reliability. This includes software solutions for Air Traffic Control, Gate, Airfield Ground Lighting and Weather System applications as well as their developed (IoT) assets installed airside as sensors and actors. Airport and Airline solutions as we know them today are changing. Solutions are highly integrated, are ready for cloud technology, and data is broadly shared to optimize airport operations. Defining and maintaining group wide Cyber Security Standards is key for our business as well as accompanying the secure integration of our solutions into customer environments. The Security Analyst will be an ambassador within the organization working between the business line and IT.
Responsibilities:
Security assessment and requirement compliance verification to ensure our solutions from network infrastructure over hosts and application are robust against cyber-attacks
Support pre-sales as subject matter expert for tenders and customer meetings
Establish penetration testing of applications and infrastructure process wise and support with the implementation
Conduct vulnerability and network scans, risk assessments and security audits
Define, implement, and maintain security strategies and policies. Follow market trends, risks, and approaches
Close cooperation with agile software teams, solution delivery teams internally, and customer IT externally
Software review and testing in terms of cyber security
Recommend and support Business Lines with the selection and implementation of appropriate tools and counter measures
Security awareness training (internal and external)
Requirements:
5- 10 years Experienced in information security and/or software development
Excellent knowledge in industry-grade cryptography, security protocols
Experienced with software requirements, software architectures, PKI, HTTPS, TLS, Keycloak, cloud technologies such as Docker or Kubernetes
Knowledge in a programming language and design patterns
Computer networking Windows and Linux operating systems
Strong IT skills including knowledge on hardware, software, networks, and data centers, cloud computing
Knowledge on relevant standards such as ISO27001
Ability to think like a hacker and anticipate hacker moves
Desire to self-educate on the ever-changing landscape of system vulnerabilities and exploits
Excellent report writing and communication in English
Ability to present relevant subjects to a key stakeholders of the company
Relationships/Stakeholders: Internal: Project Managers Product Owners/managers Peers within the Security team External: Suppliers & 3rd Parties Vendors
Skills:
Communications and remediator skills
Customer Facing Interpersonal skills
Problem solving
Negotiation and conflict management
Multitasking
Represents the services across the Organization
Ability to manage continuous changes
Education/Certifications:
Security Certifications in CISSP/CISA/CEH
Project management (Prince2 certification is a plus)