We are now looking for an Information Security Officer who will support the security competency by providing information and cyber security expertise on systems, platforms, databases, networks and security in managed services projects. You will handle the customer and will drive the security compliance, security controls implementation, security operations of Infrastructure and applications in an IT managed services environment.
What you will do
Ensure the systems and Managed Services are compliant with security policies, security blueprints and other regulatory requirements
Provide on demand reports from systems on security compliance
Provide RCA reports on demand to security teams as mentioned above
Provide evidence of compliance by way of configuration snapshots to security and internal Audit teams
Coordinate in the full lifecycle of vulnerability management system
Coordinate in the full lifecycle of User Access Management (e.g.: provide profile, user attributes, stale credential details and integration pre requisites for IAM solution)
Coordinate in emergency and planned security patch management
Coordinate in periodic BCP/DR drills
Coordinate in BCM plans for communications management, once BCP is invoked
Coordinate in Security Policy enforcements
Coordinate in building cloud federation platforms for user access management, provisioning, sustenance and revoking, with du IAM platforms
Provide details of systems such as logs, log format, log type etc. to facilitate integration to SIEM solution
Provide inventory details of the systems, to facilitate integration of UCMDB platforms or other inventory management solutions;
Coordinate and support in full life cycle of Security Incident Response (e.g.: detection and identification, containment, eradication, recovery) and Root Cause analysis
Coordinate in change requests for security tool, system integrations. The example of systems integrations can be (e.g.: Firewall integrations, IPS/IDS, Database activity monitoring, IAM systems, UCMDB, Vulnerability Management Systems, DLP, Syslog integrations with SIEM, SIRT investigations/SIRT lifecycle, Risk mitigation plan execution and lawful interception tool integrations etc.)
Maintain a repository of DR run books and SOP\xe2\x80\x99s of systems and services in scope
Provide and maintain master communication matrix (Firewall) for all the systems and applications under the Supplier\xe2\x80\x99s responsibility
To be available for periodic Security CAB meetings
Support in ongoing certification initiatives, audits and compliance requirements
Support in process governance creation for the activities initiated by TSRM entities
You will bring
Education: Academic degree, minimum on bachelor level, in engineering (IT, Telecom) or
10-15 years\xe2\x80\x99 experience in Information Security and Cyber Security domain.
Min years of experience: 10 Years
Domain experience: Information Security, Cyber Security, Security Risk Management, IT Audit, ISMS \xe2\x80\x93 ISO 27001, BCMS ISO22301, SIRT, IAM, SOC, Data Privacy & Security, Network Security etc.
Have knowledge sharing & collaboration skills
Have business understanding, commercial acumen & market insight
Certifications like CISSP, CISM, CISA, CRISC, ISO27001, CDPSE will be considered as added advantage
Why join Ericsson?
At Ericsson, you\xc2\xb4ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what\xc2\xb4s possible. To build never seen before solutions to some of the world\xe2\x80\x99s toughest problems. You\xc2\xb4ll be challenged, but you won\xe2\x80\x99t be alone. You\xc2\xb4ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.
What happens once you apply?
to find all you need to know about what our typical hiring process looks like.
Encouraging a diverse and inclusive organization is core to our values at Ericsson, that\'s why we nurture it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team.
Ericsson is proud to be an Equal Opportunity and Affirmative Action employer, .
Primary country and city: United Arab Emirates (AE) || United Arab Emirates : Dubai : Dubai || United Arab Emirates : Abu Dhabi : Abu Dhabi Req ID: 731830