Team Lead, Information Assets Security at First Bank

Job Identification: 329

Job Description / Responsibilities

• Manages, provides leadership and guidance to less experienced cybersecurity leaders.
• Prioritizes and assigns the tasks to be completed by a group of cybersecurity leaders.
• Possesses the knowledge required to follow and adhere to compliance frameworks and other security requirements and standards that enable the organization to reduce risks and meet regulatory and statutory information security compliance.
• Identifies systemic security issues based on the analysis of vulnerability and configuration data.
• Implements security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components for third party service providers.
• Participates as a stakeholder in cross-functional teams to develop technology solutions.
• Collaborates with functional teams and/or stakeholders to identify and/or develop appropriate solution designs, proper implementation and any required mitigation strategies.
• Performs reviews and identifies security and other weaknesses in solutions that may introduce risks to the enterprise and business goal achievement.
• Provides cybersecurity recommendations to leadership based on existing, emerging and new cybersecurity threats and vulnerabilities, which introduce risk to the achievement of business goals and objectives through third party integrations.
• Advise best practices when integrating third party security controls into FirstBank system Review third party software engineering methodologies; system and security engineering principles; secure design and secure architecture.

Requirements
Minimum Education:

• First Degree in Computer Science / Engineering, Higher Degrees/Professional Certificates.

Minimum Experience:

• Ten (10) years relevant working experience and 3 year working experience at supervisory level
• Working knowledge of ISO 27001
• Knowledge of the Security tools such as Qualys, Burp Suite, etc
• Good Knowledge of Penetration testing tools.
• Good knowledge of MS Windows and Linux
• Good understanding of Best Practices Security architecture.
• Working knowledge of penetration testing.
• Good knowledge of network protocols including UDP/TCP/IP
• Professional level knowledge of Access control lists, NAT, routing and switching
• Ability to review rule sets for firewalls
• Good knowledge of firewalls, IDS and IPS
• Good knowledge of network/application security and encryption models.