Principal Solution Development

Technical Function

Set up security cloud and on-premise infrastructure : AWS network rules, WAFs, security groups, IAM policies, etc. Set up / update / maintain security alerts using data available from Operational monitoring tools (e.g. SCADA, AgentPortal, PRTG, CloudWatch, RabbitMQ, Elastic, RealTimeHub etc) Implement and enhance security tooling+ automation including automatic alerting and integration to 3rd party tools customised to high tech products

Company policies : Maintain company security policies

Source Code Application Scan : Secure code reviews, proper scan tools followed as part of the CI / CD pipeline and tracking of identified issues

Co-ordinate Penetration Testing : Help Raise and / or co-ordinate pentest per procedure for all product lines handling Personal information, credit cards or other sensitive customer / corporate data.

Promote Security Culture / Awareness : Promote, advise and raise awareness on security issues to the team.

Public Attack Surface protection : Help protect ICM from new and emerging threats

Automate the daily manual tasks.

• Helping answer Questionnaires to support tenders and compliance requirements.

Security Development Lifecycle (SDL)

Identification of security requirements for various software products

Manage Security backlog for various software products

Setup and oversee ongoing Source Code and Binary Scans

Keep compliance documentation up to date for annual audit and reporting

Business Knowledge

Respond to clients security requests in non-standard situations, investigating all the facts.

Understand the key business drivers and applies this knowledge to own work.

Respond to tenders for security related questionnaire

Procedural Knowledge

Ensure security deliverables meet the required ICM quality standards.

Effectively apply required security procedures and methodologies.

Working with others

Work cooperatively to achieve team goals making constructive suggestions to move things forward.

Build stable and useful working relationships with others outside the immediate area of work.