Job Summary

As a member of growing cybersecurity team of an EdTech company, you will support multiple disciplines across various Cybersecurity Programs. The Cybersecurity Engineer will working closely with multiple departments (Developers and IT Operations) on Data Protection and Infrastructure protections.

Job Specific Responsibilities

Responsible for carrying out activities around Security Solution design, documentation, planning and implementation of a data privacy and security programs (including selection and deployment of any identified tools) and daily Security Operations support for Alef Education.

• Security Solution design, documentation, planning and implementation of a data privacy and security programs
• Including selection and deployment of any identified tools
• Daily Security Operations support for Alef Education.
• Supporting development and Operation teams with application configuration for deployment, monitoring and other automation.
• Testing, debugging and troubleshooting of platform level problems.
• Work with third-party and other internal providers service to support a variety of integrations.
• Working with product teams on a range of tools and services, improving products to meet user needs.
• Participating in sprint planning to work with developers and project teams to ensure projects are deployable and monitorable from the outside.
• As part of the team you may be expected to participate some of the 2nd line in-house support and Out-of-Hours support rotas.
• Proactively advice on best practices.
• Assist in budgeting process.

Education, Experience and Required Skills

• Degree in Computer Science, Software Engineering or related preferred
• Minimum 5 years previously on Cybersecurity experience with CISSP and CISM Certifications.
• Deep understanding and experience on various cybersecurity technologies, architecture and process.
• Must have in-depth understanding and hands-on experience in security safeguards technologies to secure Microservices and Public cloud services.
• Hands-on experience in Infrastructure protection \xe2\x80\x93 IPS / IDS , network malware protection , CASB , Forward and reverse proxies, NG firewalls, GPO, PKI and email security.
• Hands-on experience in Data protection - DLP, DRM, and database security
• Hands-on experience in Security Operation centre - SIEM management , Vulnerability assessment and threat intel integrations.
• Hands-on experience in Endpoint Protection - Endpoint Detection and response (EDR) , EPP, and various endpoint protection services.
• Must have in-depth understanding in IAM lifecycle and tools \xe2\x80\x93 SSO, MFA, Cloud IDP
• Must have in-depth understanding in DevSecOps practices and AWS / Azure/ GCP services.
• Review and recommend security technologies to protect company assets
• Strong written and verbal communication skills, ability to form strong relationships across multiple departments and third parties In-depth Understandings on NESA , GDPR compliance and NIST/CIS framework

Edarabia