InfoSec Security Administrator at DigiOutsource

The Department: InfoSec
We value our information and take every means possible to protect it, which is why our highly skilled and focused InfoSec team employ 'best-in-class' technologies to analyse network traffic and alert the business to potential indicators of compromise. Furthermore, we develop in-house scripts to create our own unique data protection engine that monitors and actively prevents both data leakage and virus infection.

Purpose Of The Role
We are looking for a determined, focused and self-motivated inquisitive individual to join our InfoSec Team. You will be required to provide administrative, technical and analytical support to meet the needs of the organization reporting to the InfoSec Manager.

Duties Include, But Not Limited To

• Excellent understanding and practice of core security monitoring and response services process, technology, governance; including attack detection, vulnerability management, security incident management and threat intelligence/hunting.
• Daily administration of Corporate Data Loss Prevention (DLP) technologies.
• Daily administration of Web Filtering and End Point Security Services (EDR/XDR).
• Perform Penetration testing and security assessments (Nessus/OpenVAS/Qualys).
• Working towards legislative and regulatory compliance, following the PoPI/GDPR/PCI DSS/ISO27001/CIS guidelines and sound Information Security Management System (ISMS) practises.
• Excellent understanding of security risk identification, assessment and remediation.
• Ongoing documentation and maintenance of new (and existing) security products and services in a SharePoint knowledgebase.
• Maintaining a daily events/incidents log(s).
• Responsible for application portfolio management.
• Available on call for any problems with related systems after hours.
• Working closely with Network Security Specialist(s) to ensure redundancy of duties.
• Proven experience in maintaining the Confidentiality, Integrity and Availability of key and critical systems. Making recommendations to improve operational effectiveness and efficiencies.

This job description is not intended to be an exhaustive list of responsibilities. The job holder may be required to complete any other reasonable duties in order to achieve business objectives.

Essential Criteria

• Demonstrates consistent behavior aligned to the Organizational Culture
• CISSP qualification ( in good standing )
• EDR / Threat Hunting
• Palo Alto/ASA Firewall experience
• Data Loss Prevention experience
• Knowledge and experience on Windows 7, Windows 10, Palo Alto, Forcepoint, Scripting/PowerShell, Elastic Search/ELK, EDR, CASBY.
• Solid Knowledge of IT operating systems and networking concepts. (Windows and Linux)

Desirable Criteria

• CEH – Certified Ethical Hacker
• Acute awareness of key information security principles and practices.

Person Specifications

• Adaptability
• Building Relationships
• Business Awareness
• Customer Focus
• Continuous Renewal
• Decision Making
• Facilitating Change
• Gaining Commitment
• Information Monitoring
• Initiating Action
• Optimising Diversity
• Ownership
• Planning & Organising
• Stress Tolerance
• Team Orientation
• Technical Knowledge
• Tenacity
• Thinking Skills