Cyber Security (Red Team)

• Security Controls - Establishing reviews, assessments, and testing in IT InfoSec (Conducting security assessments and penetration tests to identify vulnerabilities in systems, networks, and web applications).
• Security Architecture - Aiming to unify security design that addresses threats and risk scenarios related to our IT environment. It also specifies when and where relevant security controls are applied.
• Translating security vision to security model (Security architecture design and consulting).
• Secure Development - Automating and integrating security checks into the development pipeline (DevSecOps).

• At least 10 years of experience in Information Security design, consulting and assessment (Banking /Financial industries are advantage)
• Experience with Security architecture design and consultation.
• Proficiency with Security assessment e.g. penetration tests, source code review, VA scan, DAS.
• Experience with Security consulting in Cloud environments e.g. AWS, GCP or Azure is an advantage.
• Security certifications such as OSCE, OSCP, CREST, CPT, CRT, GPEN, GXPN, CISSP, CISA, CISM, CRISC, ISO 27001 Lead Auditor/Lead Implementer or similar are an advantage.
• Good command of English.

PRTR