IT Security Lead - Hybrid

Job Description:
As an IT Security Lead, you will play a pivotal role in safeguarding our organization’s digital assets. You’ll work closely with our SOC provider, ensuring robust security practices across multiple domains. Here are the key responsibilities and qualifications:

Responsibilities:
•Infrastructure Security:
Provide architecture and roadmaps for incorporating infrastructure security devices, including:
Intrusion Prevention Systems (IPS)
Security Information and Event Management (SIEM)
Malware proxies
Network and systems access controls
Firewalls
Authentication devices
Enterprise monitoring systems
•Network Security:
Collaborate with network teams to enhance security measures for LANs, WANs, VPNs, routers, and wireless networks.
Implement and maintain network security controls, including firewalls and application firewalls.
•AI Security:
Stay informed about AI-related security risks and best practices.
Assess and address security implications of AI implementations.
•BYOD Policies and Enforcement:
Develop and enforce policies for Bring Your Own Device (BYOD) scenarios.
Ensure secure integration of personal devices into the corporate network.
•Risk Management:
Conduct risk assessments and develop mitigation strategies.
Collaborate with stakeholders to manage security risks effectively.
•Virus and Malware Protection:
Implement and maintain antivirus and anti-malware solutions.
Monitor and respond to security incidents related to viruses and malware.
Security Awareness Training and Phishing Campaigns:
Work with vendors to develop security awareness training curriculums.
Coordinate phishing campaigns to educate employees on recognizing and responding to phishing attempts.
•Incident Monitoring and Response:
Engage with internal senior colleagues and stakeholders to articulate security positions and reasoning.
Review, tune, and develop SIEM technology systems and alerts.
Assist with enterprise vulnerability management.
Handle incident response, escalation, and management.
•Guidance and Leadership:
Provide information security guidance and mentorship to junior members of the CSIRT and other parts of the business.
Enhance the enterprise’s capability to perform forensics on systems without interrupting employees’ work.
Participate in endpoint forensic investigations.

Qualifications:
•Education: Bachelor’s or Associate Degree in Computer Science, Technical, Education, Engineering, Information Security, Business, Information Technology, or related fields.
•Certifications: Relevant certifications such as CISSP, NRA, FLS, ITIL, SANS, BLS, CCNA, PSP, CPP, CISA, CISM, IAM, IAT, ISO.
Skills:
•Strong understanding of network security principles.
•Familiarity with AI security considerations.
•Ability to develop and enforce policies.
•Experience with risk assessment and mitigation.
•Knowledge of virus and malware protection strategies.
•Proficiency in VAPT processes.
•Scripting skills (Java, Perl, Ruby, Python).
•Other desired skills: Policy formation, risk assessment procedures, role-based authorization methodologies, firewalls, intrusion detection, and knowledge of industry best practices and regulatory trends.