Technical Security Compliance

Main ResponsibilitiesSupport the development and implementation of IT Strategic Plans, Security Architecture, and best practices.Conduct periodic technical security assessments such as VAPT, vulnerability scans, and configuration reviews.Proactively monitor and analyze cyber incidents and alerts, escalating to the Security Operations team for follow-up actions.Monitor and recommend improvements to Cloud security posture, security tools, and configurations.Collaborate with Security Operations and Infrastructure teams to enhance and document processes for incident handling and threat management.Develop and maintain security baselines across infrastructure (networks, servers, databases, security appliances, and applications).Enforce BNM RMiT cybersecurity requirements within IT controls, SOPs, and architecture design.Analyze system logs (firewalls, IDS/IPS, EDR, NDR, PAM, VPN, etc.) to identify and mitigate potential threats.Oversee Identity and Access Management (IAM) processes including access rights review, privilege management, and system ID governance.Manage the development and maintenance of IT security SOPs, standards, and guidelines.Provide security architecture support for infrastructure, application, and cloud environments.Prepare periodic compliance and security health reports.Lead incident management activities including response planning, investigation, and resolution within SLA timelines.Collaborate with external consultants and service providers for audits and security solutions.Recommend and implement advanced security solutions to strengthen resilience and ensure compliance.Provide leadership and mentorship to team members, ensuring adherence to best practices and fostering a culture of continuous improvement.Key Knowledge & SkillsQualification:Bachelor’s Degree in IT, Computer Science, Cybersecurity, or related discipline.Certifications:CEH, CISM, or CISSP additionalCloud Security certifications (AWS/Azure) are highly desirable.Experience:Minimum of 10 years’ experience in IT Security Infrastructure (operations and implementation).Proven track record in leading security teams and ensuring compliance with frameworks such as BNM RMiT, ISO 27001, and NIST CSF.Technical Expertise:Proficient in Firewalls, IDS/IPS, EDR, DLP, NAC, VPN, HSM, API, and SIEM tools.Experience in vulnerability lifecycle management, configuration hardening (CIS benchmarks), and cloud security operations.Familiar with Zero Trust, SASE, SOAR, IGA, and AI-driven analytics.Strong understanding of encryption, IAM, and security architecture design.Core Competencies:Excellent analytical, troubleshooting, and problem-solving abilities.Strong leadership and documentation skills.Time management and multitasking capabilities.Innovative thinker with the ability to anticipate and respond to emerging cyber threats.