Send me more jobs like this

Sorry, This job is expired.

Senior Information Security Engineer - PCI DSS

Keywords / Skills : Information Security, Payment Card Industry, PCI, Vulnerability, Penetration, Ethical Hacking, Qualys, CISSP, Firewall Security, CISA, CISM, IT Audit, IT Risk

5 - 15 years
Posted: 2018-08-10

Security Analyst
Posted On
10th Aug 2018
Job Description
Key Responsibilities:
  • Coordinate with country representatives and assist to maintain PCI DSS compliance 
  • Perform internal and external vulnerability scanning and penetration testing across the group and ensure the findings are addressed in a timely manner by system owners 
  • Assist in various internal and external IT audits. 
  • Maintain and publish technical security standards for infrastructure and software 
  • Perform active monitoring on various systems, e.g. anti-virus, IDS/IPS, firewalls, routers, switches, system configurations, and ensure that appropriate security standards are implemented into systems and network equipment and compliant with group policy and standard. 
  • Follow-up closely for anti-virus irregularities of all countries and ensure that they infected/unmanaged PCs and servers are resolved. 
  • Assist in the investigation of major security incidents. Working with internal and external parties to identify the root cause and implement mitigation measures. 
  • Effectively manage expectations of senior management and different team leaders in shared service center. 
  • Complete various security-related tasks being allocated and proactively report status to supervisor 

Key Requirements:
  • Bachelors Degree in Any Computer related course 
  • Should have a minimum of 5 years of IT experience. 3 years of which in Information Security Management, preferably in a regional and shared services environment 
  • Must have good interpersonal skills, and strong in verbal, and written communication skills in English 
  • Solid knowledge and experience with PCI DSS 
  • Solid knowledge and prior experience in using vulnerability management tool, e.g. Qualys and also performing penetration testing using tools like Metasploit or Wireshark, etc. 
  • Good understanding of security features in Windows, Unix/Linux, firewall, router, switch, and VPN technology. 
  • Past experience in security incident response process, perform immediate response procedures and work closely with an external vendor in performing forensic investigation if necessary. 
  • Advanced knowledge of network and Web-related protocols e.g., TCP/IP, UDP, IPSEC, HTTP, routing protocols 
  • Advance knowledge of security features and monitoring of IDS/IPS, Firewall and Web Application Firewall. 
  • Experience in IT risk management process, including risk identification, evaluation, mitigating measure and risk treatment. 
  • Solid understanding of IT audit process and experience in dealing IT auditors 
  • Ability to perform daily health checks and monitoring activities on security compliance, intrusions, and viruses. 
  • CISSP, CISM or CISA qualifications are a plus 
  • Has high attention to details 
  • Has the ability to maintain focus, able to manage time effectively, and prioritize tasks 
  • Must have a good sense of ownership and commitment 
  • Must be able to act on initiative, identify opportunities, and proactive in putting forward ideas and solutions 

About Company

The Dairy Farm Company, Limited-ROHQ is an IT Shared Service Center with growing opportunities across a wide variety of exciting technologies in both Applications Services and Infrastructure Services. The service center plays a major role in support, development, implementation, innovation and continuous improvement of information technology services, initiatives and projects across the Dairy Farm Group.

At Dairy Farm you can experience frequent opportunities to travel across Asia, excellent career development, and an invigorating and supportive fast-paced work environment.

Join us and fast track your career!

Walkin for you