Privacy and Security Consultants

         

Location: YONDU HQ

Status: Urgent

# of Positions Available: 6

DUTIES AND RESPONSIBILITIES:

  • Ensure that security architecture principles and standards are thoroughly executed across all the assets, platforms, and connectivity for services defined within the assigned domain. This covers the end-to-end lifecycle of a service from creation to operationalization.
  • Define, maintain, and monitor implementation of security and privacy architecture and design controls specific to a service, platform, application, or connectivity within the assigned domain.
  • Assess and review new Low-High complexity services/projects within the domain to ensure that security and privacy architectural issues are identified and mitigated prior to launch.
  • Review Security Architecture and Design call-outs in Security Risk Assessment reports and Risk Treatment Plans for all new projects prior to cutover. Monitor Risk Treatment Plans for Security Architecture and Design issues and collaborate with Domain Owners and/or their teams to maintain security and privacy risk levels of production systems and/or mission-critical services with ISDP approved Compliance Rating.
  • Provide guidance to project managers and project sponsors on the recommended security and privacy controls and countermeasures.
  • Perform security architecture and design reviews, service and data flow reviews to check for security / privacy flaws and gaps and recommend remediation and/or mitigation.
  • Utilize knowledge and understanding of application architecture, network design, infrastructure security and data security standards to identify findings and clearly communicate security & privacy risks and possible remediation.
  • Reviews, oversees and monitors the execution and closure of Security Deviation Requests related to exemptions to security architecture and design standards.
  • Conduct regular cadences with assigned domain stakeholders to review and discuss security architecture and design issues of the respective domains.
  • Other job-related activities that may be assigned from time to time.

WORK EXPERIENCE

  • 2-4 years work experience in Telecom or IT (IT systems/network administration, preferably hands-on experience in Server Operating System (Windows, UNIX/Linux) or network devices; IT security systems administration (Firewall/VPN, Intrusion Prevention Systems, Antivirus/Anti-spam, URL filtering, Encryption, etc.), Network Design/Engineering/Operations/Service Management.

 

LEVEL OF KNOWLEDGE

  • Graduate of B.S. in Electronics and Communications Engineering, Computer Science/Engineering or any IT-related courses (should be 4-5 years course).
  • Training in Information Security, ITSM, Project Management, Business Process Admin, & Quality.
  • Preferably has certification: CCSA/CCSE, CCNA/CCNP, MCSA/MCSE, RHCT/RHCE, CEH, CISA/CISM/CISSP, ITIL

 

COMPETENCIES

  • IT systems/network administration, preferably hands-on experience in Server Operating System (Windows, UNIX/Linux) or network devices; IT security systems administration (Firewall/VPN, Intrusion Prevention Systems, Antivirus/Anti-spam, URL filtering, Encryption, etc.)
  • Systems Integration
  • Telecom Network and Protocols
  • IT Audit Process
  • Soft Skills (Written and Oral Communication)
  • Results Oriented, capable of critical thinking, decision making and accountability, participates in collaborative teamwork
  • Strategic and Business Acumen, Resourceful Planning and Organizing