Information Security Engineer - User Access at Interswitch

Responsibilities
User Administration:

• Administer users logical access on systems and business application in line with provisions of the policy and access control matrix.
• Support the deployment and administration of token / 2 factor authentication services within the organization.
• Support day to day operations of access management (creation, modification, deletion etc) for users.
• Coordinate the support and maintenance of secure user account and access administration processes in accordance with information security policies and procedure.
• Periodic review of user login activities for inactive or unused user profiles for deactivation.
• Provide input for security awareness based on identified risk in user management activities.
• Maintain up to date knowledge of access management systems in the Information security industry.
• Perform other duties as may be assigned by the Team lead, InfoSec Governance & Strategy.

Key Management:

• Manage cryptography key management operations to support various projects and 3rd party integrations.

Social Engineering Test:

• Administer social engineering tests, collate and analyze results and prepare reports for management.
• Physical Access control.
• Administer users physical access to business areas.

Academic Qualification

• A First Degree in a Numerate discipline - Computer Science, Engineering, Maths, etc

Professional Qualification(s):

• At least 1 of the following will be an added advantage: Security+, ISo27001, ISO31000 Experience (Number of relevant years).
• Minimum of 2years of relevant experience in Information Security, Financial or Payment industries.

Requirements:

• Proficiency with Active Directory Users and Computers.
• Architecting and reviewing Federated Single Sign-On using various open standards, particularly Security Assertion Markup Language (SAML), OpenID or OAuth protocol
• Proficient knowledge of SQL database(DML ,DDL activities)
• Proficient knowledge of core IT (Infrastructure, Applications)
• Knowledge of Postilion and Postcard
• Proficient knowledge of security methods, processes and tools
• Proficient knowledge of key generation/Import/Export ceremony
• Good strategic planning and management skills
• Sound understanding of Cryptography and its application in electronic channels
• Good interpersonal and communication skills and the ability to work effectively with business stakeholders
• Sound conflict management skills
• Good administrative and managerial ability
• Customer-centricity
• Creative, results-oriented and analytical with strong problem-solving capability