Cybersecurity Specialist

Job Summary: As an Information Security Engineer at ISERVEU TECHNOLOGY, you will play a critical role in safeguarding sensitive financial data, implementing security measures, and mitigating potential risks. Your primary responsibility will be to ensure the confidentiality, integrity, and availability of the organization's information assets.

Key Responsibilities:

1. Security Architecture and Design: Collaborate with the development and infrastructure teams to design and implement secure architectures for applications, networks, and systems. Conduct security reviews and assessments of existing systems to identify vulnerabilities and recommend appropriate controls.

2. Security Operations: Monitor and respond to security incidents, conduct investigations, and perform forensic analysis when necessary. Manage and maintain security tools and systems such as intrusion detection/prevention systems (IDS/IPS), firewalls, SIEM (Security Information and Event Management), and antivirus software.

3. Vulnerability Management: Perform regular vulnerability assessments and penetration testing on systems, networks, and applications to identify weaknesses and recommend remediation strategies. Track and manage vulnerabilities, and work with relevant teams to ensure timely patching and mitigation.

4. Identity and Access Management: Oversee the organization's identity and access management program, including user provisioning, access controls, and authentication mechanisms. Develop and enforce access policies, conduct periodic access reviews, and implement strong authentication methods such as multi-factor authentication (MFA).

5. Security Awareness and Training: Develop and deliver security awareness programs and training sessions to educate employees about information security best practices, policies, and procedures. Foster a culture of security awareness and ensure compliance with regulatory requirements.

6. Incident Response and Disaster Recovery: Develop and maintain incident response plans and coordinate with internal teams and external stakeholders during security incidents. Participate in business continuity planning and testing activities to ensure effective disaster recovery capabilities.

7. Compliance and Risk Management: Stay updated with relevant industry regulations and standards such as PCI-DSS, GDPR, and ISO 27001. Conduct risk assessments and assist in developing risk mitigation strategies. Collaborate with auditors during security audits and ensure compliance with applicable regulations.

Requirements:

* Deep understanding of information security principles, technologies, and best practices within the financial industry.
* Experience in designing and implementing secure architectures for applications, networks, and systems.
* Strong knowledge of security tools and systems such as IDS/IPS, firewalls, SIEM, and antivirus software.
* Excellent communication and collaboration skills.

Working at ISERVEU TECHNOLOGY:

As a leading full-stack financial infrastructure company, ISERVEU TECHNOLOGY provides innovative customer experience solutions for payment acquiring, issuing, accounts, lending, withdrawal, deposit, remittance, insurance, and customer KYC. Our team is passionate about delivering high-quality products and services, and we are committed to fostering a culture of security awareness and compliance.

---