Job Title: Cyber Security Consultant
Location: Dubai, United Arab Emirates
Role Type: Permanent

Description
Our client is a global player in providing airside solutions to increase safety, efficiency and reliability. This includes software solutions for Air Traffic Control, Gate, Airfield Ground Lighting and Weather System applications as well as their developed (IoT) assets installed airside as sensors and actors. Airport and Airline solutions as we know them today are changing. Solutions are highly integrated, are ready for cloud technology, and data is broadly shared to optimize airport operations. Defining and maintaining group wide Cyber Security Standards is key for our business as well as accompanying the secure integration of our solutions into customer environments. The Security Analyst will be an ambassador within the organization working between the business line and IT.

Responsibilities:
\xe2\x80\xa2 Security assessment and requirement compliance verification to ensure our solutions from network infrastructure over hosts and application are robust against cyber-attacks
\xe2\x80\xa2 Support pre-sales as subject matter expert for tenders and customer meetings
\xe2\x80\xa2 Establish penetration testing of applications and infrastructure process wise and support with the implementation
\xe2\x80\xa2 Conduct vulnerability and network scans, risk assessments and security audits
\xe2\x80\xa2 Define, implement, and maintain security strategies and policies. Follow market trends, risks, and approaches
\xe2\x80\xa2 Close cooperation with agile software teams, solution delivery teams internally, and customer IT externally
\xe2\x80\xa2 Software review and testing in terms of cyber security
\xe2\x80\xa2 Recommend and support Business Lines with the selection and implementation of appropriate tools and counter measures
\xe2\x80\xa2 Security awareness training (internal and external)

Requirements:
\xe2\x80\xa2 5- 10 years Experienced in information security and/or software development
\xe2\x80\xa2 Excellent knowledge in industry-grade cryptography, security protocols
\xe2\x80\xa2 Experienced with software requirements, software architectures, PKI, HTTPS, TLS, Keycloak, cloud technologies such as Docker or Kubernetes
\xe2\x80\xa2 Knowledge in a programming language and design patterns
\xe2\x80\xa2 Computer networking Windows and Linux operating systems
\xe2\x80\xa2 Strong IT skills including knowledge on hardware, software, networks, and data centers, cloud computing
\xe2\x80\xa2 Knowledge on relevant standards such as ISO27001
\xe2\x80\xa2 Ability to think like a hacker and anticipate hacker moves
\xe2\x80\xa2 Desire to self-educate on the ever-changing landscape of system vulnerabilities and exploits
\xe2\x80\xa2 Excellent report writing and communication in English
\xe2\x80\xa2 Ability to present relevant subjects to a key stakeholders of the company

Relationships/Stakeholders:
Internal:
Project Managers
Product Owners/managers
Peers within the Security team
External:
Suppliers & 3rd Parties
Vendors

Skills:
\xe2\x80\xa2 Communications and remediator skills
\xe2\x80\xa2 Customer Facing Interpersonal skills
\xe2\x80\xa2 Problem solving
\xe2\x80\xa2 Negotiation and conflict management
\xe2\x80\xa2 Multitasking
\xe2\x80\xa2 Represents the services across the Organization
\xe2\x80\xa2 Ability to manage continuous changes

Education/Certifications:
\xe2\x80\xa2 Security Certifications in CISSP/CISA/CEH
\xe2\x80\xa2 Project management (Prince2 certification is a plus)
\xe2\x80\xa2 3 to 5 years of experience in a similar role