Information Security Engineer at Interswitch

Job Description

• To conduct security assessments for Interswitch and design security systems and processes with specialization in network devices and servers (Linux and Windows).
• To execute solutions and infrastructure security strategy with reference to information security and IT risk management programme.
• To review reports, consolidate information and produce solutions and infrastructure security processes and procedures. To support implementation of required security measures.

Responsibilities

• Develop security configurations baselines for network devices and Servers in line with global security best practices and regulatory and contractual requirements
• Participate in identifying and minimizing financial impact of operational incidents through business impact analyses
• Support implementation of required security measures such as password policies, database user profiles and establishment of security control baselines for network devices and servers
• Evaluate and identify any potential security threats to the business and to ensure the proper and robust risk mitigation systems are in place
• Enforce security policies and procedures by administering and monitoring security profiles
• Administer users’ logical access on systems and business application in line with provisions of policy and access control matrix
• Gathers, monitors and analyses risk data as directed using established risk management models, systems and protocols and recommends further investigation
• Administer social engineering tests, collate and analyze results and prepare reports for management
• Conduct vulnerability assessment and penetration testing on ISW network devices and servers
• Analyze business processes and workflows to identify bottlenecks, redundant IT and Engineering tasks, routine and repetitive tasks and opportunities for increasing efficiency and automation
• Review user admin documentations, suggest controls to be implemented and adopt a sequence of activities that allows for optimal efficiency and effective coordination

Requirements

Academic Qualification:

• University First Degree in Computer Science, Information Technology or other related fields

Experience:

• At least 5 years' relevant experience
• Experience should include: Security audits to identify potential vulnerabilities related to network devices and servers, design or implementation of security requirements for network devices, servers and third party systems integrations (VPN) to ensure secure installation and operation.