Associate Information Security

WRI’s Operations department strives to make all global offices fully capable and low risk, enhancing their operational capabilities, establishing sustainable growth through a bond of mutual respect, collaboration and sharing knowledge across the all WRI offices. This is done by targeting upon standards of performance, measuring the efficiency and effectiveness for across all global offices.

Job Highlight:

Reporting to Associate Director, Information Security Systems, you will manage daily security operations. This includes alert/incident management, Azure Security Center, user Identity and access management, assets complaint and reporting.

This role ensures a secure endpoint and network infrastructure. You will manage design, implement, and maintain security solutions to protect all endpoints, applications, and network. Your work comprises, but is not limited to, endpoint security, network security, data loss prevention controls implementation, vulnerability and patch compliance and supporting governance and risk compliance functions. You will be responsible for integrating equity into your work.

What will you do:

SIEM Incident response:

• Monitor and Respond to Security Incidents, requests, and queries Cyber, Privacy, and Fraud
• Initiate Emergency Response Process when needed
• Driving the lifecycle of security incidents from initial triage through root-cause-analysis & corrective/preventive measures
• Efficient communication with key stakeholders including senior-responders & Support Teams during Security Incidents
• Performing the historical Incident trends (Trend Analytics)
• Must have hands on microsoft sentinel
• Ability to identify compromised computers using logs, packet capture, and related computer centric evidence sources

Vulnerability Management :

• Hands-on experience working with Vulnerability assessment tools like Qualys, Endpoint central
• Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
• Perform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
• Maintain appropriate documentation that defines the Threat & Vulnerability Management Program, Policy and Procedures
• Microsoft 365 defender
• AZURE AD, Azure AD Identity Protection
• Must have good knowledge about Microsoft 365 defender

What will you need:

Education:

• You have completed a bachelor’s degree in a related field. Relevant work experience in lieu of degree is accepted

Experience:

• You have a minimum of 3 years of relevant work experience
• Experience with SIEM Investigations
• Understanding of Microsoft Defender and Azure

Languages:

• Written and verbal proficiency in English.

Source: https://jobs.jobvite.com/wri/job/o4mqvfw5