Project

Dubai’s software house is a daughter company of American giant Earthlink.

Suitable Candidates from all over the world are welcome.

Responsibilities

• Be involved with application security initiatives which include risk identification based on information criticality through to control implementation and management of risk acceptance by business areas
• Both lead and participate in assessments of existing and proposed solutions/systems
• Identify vulnerabilities and work with information owners and other stakeholder groups to ensure that together, we respond to their risks appropriately
• Support operational security activities of ongoing divisional security processes (e.g., penetration tests, mobile tests, secure code review, etc.)
• Support the development and enforcement of application security and information strategies, security policies and standards; work with business units and technical teams to implement security policies and processes throughout the projects
• Track and report on the effectiveness of information security technology controls, processes and policies
• Developing technical and soft documentation – operating procedures, guidelines and standards
• Be part of an active team who remains current on emerging risks and technologies, key developments and strategies for the businesses you support
• Analyzes problems, identifies core issues, investigates, evaluates and integrates information

Must have

• 6+ years of progressive information risk management
• Experience focused on application security and related fields
• Exposure to other disciplines is required: technology/vendor risk assessment, network security, infrastructure/platform security, data/application security
• Vulnerability/patch management, IT auditing, IT risk and control assessments
• Professional certification or designation in information security. Application security-focused certification or designation is preferred. (e.g., GPEN, OSCP, CISM etc.)
• Successful candidates will have a strong Cyber Security background in the following areas of expertise:
  - Information Security Strategy, Governance and Management
  - Identity and Access Management (including PAM)
  - Cloud security
  - Monitoring and Incident management
  - Data loss prevention/protection
  - End-point security
  - Threat intelligence
  - Solution security architecture
  - Privacy protection
  - Project management in Cyber Security

Nice to have

• NodeJS/Angular/React
• Front-end experience

Our offer

• Employment-based on B2B
• The remuneration is in US Dollars