Dubizzle Group
Job Description In this role, you will: Collaborate with internal teams to implement security controls, address vulnerabilities and improve security practices in the relevant platforms & services Conduct penetration testing on web applications, mobile applications, APIs, networks, and systems and coordinate the pen-testing projects executed by external partners; Ensure identified vulnerabilities, threats and risks are captured and processed in line with our risk management policy and procedure; Take part in security incident resolution and contribute to the development, maintenance and assessment of the Incident Response Plan’s effectiveness; Monitor the internal alerting systems and drive the events to closure; Participate in regular internal and external audits (including periodic user access reviews) on critical systems and ensure audit findings are remediated in the agreed timeframe; Reduce the information security knowledge gap within the technical teams by contributing to the creation of educational materials and awareness campaigns Implement and regularly review the internal security policies and controls across all business-critical services Requirements Bachelor’s degree in Computer Science, Information Security, or a related field 3-5 years of experience in information security or a related role; Proven experience as a Security Analyst, Security Engineer, Penetration Tester or similar role; Experience with the current Security frameworks such as ISO 27001, NIST and Data Protection Good understanding of how to secure corporate environments and business applications; Solid understanding of hosting platforms, public cloud services and enterprise networking; Technical understanding of backend engineering architectures; Familiarity with secure coding practices and vulnerability management frameworks (OWASP); Strong knowledge of secure identity and access management practices; Strong knowledge of security technologies, including firewalls, IDS/IPS, and open-source vulnerability scanning tools; Proficiency in programming languages commonly used in security, such as Python or C++; Familiarity with network protocols and encryption algorithms; Understanding of regulatory frameworks and compliance standards (e.g., PCI DSS, GDPR) Able to define and select solutions for the cybersecurity space and monitor their effectiveness; Good communication skills, both written and verbal, with the ability to drive alignment with technical and business stakeholders; Continuous learning mindset to stay on top of emerging threats and technologies, with a willingness to apply processes unique to the challenges at Dubizzle Group; Disciplined and logical thinker with the ability to draw conclusions from large data sets;
More info
To apply for this job please visit www.naukrigulf.com.