The Role
Role Profile:
To manage a function within the eGroup Department to achieve business goals and objectives.
The below Key Performance Areas include but are not limited to:
Maintain information security function to ensure information assurance, support, develop and implement comprehensive information security framework.
* Manage Vulnerability assessments and penetration tests for organization's web and mobile applications, networks and infrastructures, logical security audits.
* Managing research and analysis of vulnerabilities and penetration test results.
* Review vulnerability assessment reports and suggest priorities, impact on business and analyze for any exceptions.
* Manage security assessments, provide hardening and remediation plans for Vulturized environment, OS, application servers, databases and network devices.
* Perform social engineering attacks.
* Keep updated on zero day attacks, evolving vulnerabilities and threats.
* Schedule tests and communicate with business for VAPT, retests and verification assessments.
* Review remediation plans and controls suggested in reports for closing of vulnerabilities.
* Assist security incident response activities.
* Assist in technical investigations of IS related incidents.
* Manage forensics investigations as per the requirements.
Requirements
* Post Graduate/graduate in Information Security or IT related field.
* Preferred certifications: OSCP, CEH, LPT, SANS penetration testing certifications like GPEN, GWAPT, GMOB.
* Sound experience in performing manual penetration testing: authentication bypass, injection scripting attacks and OWASP top 10 vulnerabilities.
* Experience in Vulnerability assessment and penetration testing tools like: Nexpose, Nessus, Qualys, nmap, wireshark, BSQL, BurpSuit, OWASP ZAP.
* Extensive knowledge of OWASP top 10, best practices, methodologies and architectures.
* Excellent communication skills and attention to details.
* Ability to explain vulnerabilities to executives and developers in simple and understandable format.
* Good understanding of programming languages and ability to conduct code reviews.
* Good knowledge of OSI model.
* Good understanding of Antivirus, Firewall, Intrusion Detection.
* Knowledge of forensic tools and investigative methods to find specific electronic data.
About the Company
M.H. Alshaya Co. is a leading international franchise operator for over 75 of the world’s most recognised retail brands including Starbucks, H&M, Mothercare, Debenhams, American Eagle Outfitters, P.F. Chang’s, The Cheesecake Factory, Victoria’s Secret, Boots, Pottery Barn and KidZania. The company operates over 3,400 stores across diverse customer sectors: Fashion & Footwear, Health & Beauty, Food, Optics, Pharmacy, Home Furnishings and Leisure & Entertainment. Alshaya’s stores can be found in markets across the Middle East and North Africa, Russia, Turkey and Europe and the company employs more than 47,000 people from over 120 nationalities.
The company has established itself as the industry leader across these territories through a combination of local market understanding and a comprehensive commitment to customer service. Growth in each of its operating divisions and brands is supported by continuous investment in talent and infrastructure. It applies best practices in retail operations, merchandising, marketing, information technology, logistics, real estate, human resources and financial controls.
M.H. Alshaya Co. is the retail business of the Alshaya Group, which was founded in Kuwait in 1890 and today represents one of the most dynamic companies in the Middle East. In addition to its retail operations, the Alshaya Group is active in a number of other sectors including real estate, automotive, hotels, trading and investments. Learn more about the company at www.alshaya.com or on Facebook.
No comments:
Post a Comment