Senior cyber security Analyst/ Lead Cyber Security Strategist

Job Description

Title: Senior cyber security Analyst/ Lead Cyber Security Strategist

Company Name: Pipeline Bangladesh Limited

Vacancy: Not specific

Job Location: Dhaka

Employment Status: Full-time

Educational Requirements:
∎ Bachelor's Degree, Information Systems, Computer Science, Information Security or related
∎ field required.

Experience Requirements:
∎ At least 7 year(s)

Job Context:
∎ Full Time/Permanent
∎ Work from Home/Dhaka Office

Job Responsibilities:
∎ Identify and develop a deep understanding of cyberthreats facing businesses.
∎ Lead threat hunting and build internal and external hunting knowledge.
∎ Research, develop, and classify new threats and identify mitigation techniques for products and customers.
∎ Identify and develop new detection models - working hand-in-hand with members of the data science and engineering teams. Work closely with product and data teams to improve all product features.
∎ Experience with new and emerging technologies such as cloud services and infrastructure, mobility models, and big data concepts and usage and how those relate to enterprise security technology/controls; the areas of focus include vulnerability management, cyber security, and data protection disciplines.
∎ Report to the compliance function breaches of regulatory requirements or security standards.
∎ Implement best practices for Secure Design, Threat Modelling, Threat Hunting, Playing as
∎ Red/White team player, Security requirements writing and PenTesting. • Analyses the Environment and set up a team to implement a new operational model for security engagement and assist with GDPR compliance and security best practices. Also meeting the requirement of ISO/IEC 27001 & following NIST Framework.
∎ Pursue security research topics that contribute to the knowledge about and enumeration of new threats.
∎ Provide an attackers-eye-view to the evidence presented by PIPELINE products and educate customers to the technical nature of the threat.
∎ Plan, Build, and Manage SoCSaaS (SoC Security as a Service).
∎ Security Risk Assessment, Digital Forensics & Incident Handling for Various Clients as well as for Internal System.
∎ Develop unique, effective security strategies for software systems, networks, data centers and hardware.
∎ Management of IT security and IT risk (e.g., data systems, network and/or web) across the enterprise.
∎ Address questions from internal and external audits and examinations.
∎ Develop policies, procedures and standards that meet existing and newly developed policy and regulatory requirements including SOX, PCI, and/or FFIEC guidance.

Additional Requirements:
∎ At least 7+ years of Experience in IT/Computer Engineering Related Field.
∎ Minimum 3-5 years in specially IT security or information security experience with a proven ability to engage with Senior Management and regulators.
∎ Strong Knowledge of technical infrastructure, networks, databases, and systems in relation to IT Security and IT Risk.
∎ Strong Linux Skill will & System administration required. Linux Bash Scripting/Shell Scripting required.
∎ Strong Networking Skills Required (DNS/RPZ/Routing/DHCP/AD/FS/Tunneling/Firewall etc.)
∎ Good to have Experience with Multiple Cloud Environment (AWS/GCP/Azure etc.)
∎ Good to have previous experience with Team Management, Working with Developers, Product
∎ Experience with IPS/IDS and SIEM technologies, ELK Stack, Splunk, Log Server Management etc.
∎ Knowledge, ML/AI experience etc.
∎ Prior experience working within a large-scale enterprise is preferred.
∎ Prior experience working with regulatory agencies including OCC and/or FDIC preferred.
∎ Knowledge of FFIEC guidelines preferred.
∎ Project management skills preferred (Scrum Method). It will be good to have experience on SDLC & Project Management tools likes (JIRA/Microsoft Project).
∎ Windows workstation and server administration experience preferred.
∎ Prior experience performing security reviews and risk assessments required.
∎ Digital Forensics & Incident Response experience will be highly Appreciable.
∎ Good to have Basic Programming Language & Database Knowledges Likes Python,
∎ PostgreSQL, NoSQL, Oracle etc.
∎ Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational
∎ procedures, and maintenance training materials).
∎ Certificate Preference: CEH/CSM/NSE/ICSI/IBM Certified Security Analyst/CCNP etc. will be
∎ highly preferred. (Not Mandatory for Experienced Professional).

∎ 70k - 120k Depending on expertise

Job Source: Online Job Posting.

Application Deadline: 7 Aug 2021

Company Information:
∎ 8 Jul 2021
∎ Pipeline Bangladesh Limited

Category: IT/Telecommunication