Information Security Officer

Posiiton: Information Security Officer

Role and Responsibilities

• Conduct Internal Vulnerability Assessment Penetration Testing (VAPT) activity as per the requirement.
• Manage and coordinate external VAPT activity with external audit team.
• Maintain PCI DSS compliance and ISO 27001:2022 certification.
• Ensure required policy document and appropriate forms are in place and up to date.
• Conduct security audit and inspections periodically to ensure the company is fully compliance with security standards.
• Review security event on SIEM and proceed for necessary action.
• Perform investigation using various Monitoring Security technologies.
• Conduct research on potential threats on system/networks and remediation method.
• Contribute to deploy or update security technologies (patch).
• Follows a standard methodology to identify and/or detect threats to the IT infrastructure, applications and other information assets.
• Plan and organize security awareness program.

Qualifications and Education Requirements

• 3-5 years’ experience in information security field.
• Knowledge in information security, governance, IT audit or risk management.
• Knowledge of risk assessment tools, technologies and methods.
• CEH, Security+ or equivalent certificate is preferred.
• Ability to demonstrate technical experience working with security technologies like SIEM, antivirus/antimalware, IDS, WAF, DDoS mitigation platforms.
• Bachelor degree in IT/computer Science or information security or equivalent courses.

Please send your CV at vacancy@khalti.com