We are looking for an experienced Cyber Security Specialist for one of our global shipping clients. The Cyber Security Specialist should possess a robust foundation in information security, a comprehensive grasp of cyber threats, and a genuine commitment to executing robust security measures. The ideal candidate would have good experience in formulating, executing, and upholding security solutions to protect the company’s information systems and data.
Key Responsibilities
• Security Infrastructure Design and Implementation
- Design, deploy, and maintain security infrastructure, including firewalls, intrusion detection/prevention systems, VPNs, and other security tools.
- Collaborate with 3rd party solution vendors, system architects (both shore and fleet) and developers to ensure security is an integral part of the system design and development process.
• Security Policy Development and Compliance - Develop and enforce company security policies and procedures to ensure compliance with industry rules and regulations and company requirements.
- Keep abreast with industry best practices (BIMCO guidelines or ISO 127001) and emerging threats to continuously improve security policies.
• Monitoring and Analysis - Oversee day to day operations of security tools (Azure Security Center, Azure Sentinel, SOCRADAR, to monitor and analyze security events.
- Respond to and investigate alerts generated by security monitoring systems.
• Risk Assessment and Vulnerability Assessment and Penetration Testing - Identify and assess potential risks and vulnerabilities in the organization’s systems, networks, and applications.
- Conduct regular vulnerability assessments and penetration tests to identify and address security vulnerabilities.
- Work with development and operations teams to remediate identified vulnerabilities.
• Incident Response and Management - Develop and implement incident response plans to effectively address and mitigate security incidents.
- Investigate security incidents, analyze root causes, and recommend corrective actions to prevent future occurrences.
- Perform e-discovery and forensic on internal and digital threats or incidents.
• Security Awareness and Training - Design and deliver security awareness training programs for staff to promote a cyber security conscious culture.
- Provide guidance to staff on security best practices and help them understand their role in maintaining a secure environment.
• Collaboration and Communication
- Collaborate with cross-functional teams to integrate security into all aspects of the business.
- Communicate security risks and recommendations to stakeholders.
• Documentation and Reporting - Maintain accurate records of security measures, incidents, and responses.
- Provide regular reports to management on the state of cyber security within the organization.
- Fulfill compliance and audit requirements.
Qualifications And Experience
• Bachelor’s Degree in Computer Science, Information Security, or a related field.
• Advanced degree or relevant certifications (e.g., CISSP, CISM, CEH) is a plus.
• 3 to 5 years proven experience in cyber security engineering or related roles.
• In-depth knowledge of security concepts, protocols, best practices, and technologies.
• Strong understanding of networking, operating systems, and cloud environments.
• Experience with security tools such as Azure security architecture, cloud system, firewalls, antivirus, IDS/IPS, SIEM, and endpoint protection.
• Excellent problem-solving and communication skills.
We regret that only shortlisted candidates will be notified. Thank you for your understanding.
