OVERALL PURPOSE
The overall purpose of this position is to :
- Develop and Implement Security Policies : Create and enforce policies and procedures to protect the organization's information assets from unauthorized access, theft, and other threats.
- Conduct Risk Assessments : Identify threats and vulnerabilities, evaluate associated risks, and develop strategies to minimize risks and safeguard critical data and systems.
- Monitor Network and System Security : Oversee network and system security to detect and respond to breaches or incidents, ensuring security controls are effective and operational.
- Provide Security Training and Awareness : Educate employees on security best practices and their responsibilities for protecting sensitive information, using a constructive and engaging approach.
- Manage Security Incidents : Lead response efforts to contain and resolve incidents efficiently, coordinating with internal teams and external partners.
- Lead and Mentor Team Members : Provide leadership, guidance, and mentorship to develop the skills and expertise of the security team.
QUALIFICATIONS AND EXPERIENCE
Bachelor’s degree in information security or equivalent experiencePreferred certifications : CISSP, CCSP, GCIH, GSEC, GCFA, and Microsoft SC-100, 200, 300, 400, 500Extensive experience in information security, spanning architecture and operationsDeep understanding of security technologies, standards, and best practicesProven leadership ability to build, develop, and inspire high-performing teamsSkilled in creating and enforcing security policies and proceduresExpertise in managing security incidents and conducting risk assessmentsStrong knowledge of emerging security threats and technologiesSKILLS
Proficient in English at a business levelExpertise in Microsoft 365, particularly its security featuresExtensive experience with SIEM tools like Sentinel or SplunkStrong knowledge of Microsoft Windows 11, Intune, Windows Server, Active Directory, PKI, and GPOProficiency with EDR and EPP solutions, particularly Microsoft E5 Security SuiteFamiliarity with Infrastructure as Code principles and automationKnowledge of Threat Intelligence is a plusExperience in supporting penetration testing engagementsEager to learn and adapt to new technologies in a rapidly changing environmentHighly organized, responsible, and flexibleSkilled in scripting with a solid understanding of regular expressionsGood understanding of general IT systems and TCP / IP networkingCOMPETENCIES AND BEHAVIOURS
Strong communication skills with the ability to collaborate effectively with virtual teamsHighly organized and capable of managing hybrid infrastructuresPassionate about Microsoft 365, Azure technologies, and security practicesGood knowledge of traditional Microsoft Active Directory environmentsProven analytical and problem-solving abilitiesDeep curiosity and enthusiasm for security, incident detection, and threat huntingSkilled at prioritizing and executing tasks in high-pressure environmentsAbility to design innovative, cost-effective solutions