Provides expertise and advice towards project security posture and also focus on enhancing the resilience of security processes/operations.Monitor Implemented/deployed security tools and software for new patches and CVEs. Patches will need to be implemented based on the project KPI/SLA.Support ongoing internal and external audits, reviews, security control assessments, and conduct tests of security operations based on established schedules.Perform real time analysis and trending of security log data from various deployed security tools and software. Analyse security event data to identify suspicious and malicious activity.Coordinates assigned security related tasks with team members and users to ensure deadlines/project milestones and customer requirements are achieved.Drive the Knowledge Sharing Initiative within team and ensure that all team members are cross-trained in the variouse security tools that have been implemented on the project.Review and ensure team members follow the established processes and procedures relevant for their role and responsibilities.Ensure than Impact Assessments (IAs) for Change Requests (CR) are completed thoroughly and accurately by respective team members.Analyze, determine the root cause, recommend solutions and develop fixes and test application defects for security related issues.Oversee that resolution of tickets/issues are timely, comprehensively documented and communicated within the stipulated SLA/KPIsTake full ownership of security issues assigned and oversee complete resolution of it.Assist with knowledge transfer to other teams and team members where required.Understand complex security problems and formulate recommendation for resolution.Support the maintenance and update of business recovery/contingency plans and/or procedures.Contribute suggestions and ideas for continuous improvements on the security of the system based on insights gained from previous experiences or past issues.Oversee that the system security technical documentation are updated on any system fixes/enhancements.Recommend security solutions to resolve issues caused by system related incidents to achieve data integrity and security.Coordinate with system users and other teams within the project to obtain required information for troubleshooting.Provide timely status reports to the Project Manager and escalate issues when needed.Provide resolution / workaround to issues and problems escalated to the Project Manager.Support patch activities and guide the team during the patching of security products and tools in the Test and Production environments.
Bachelor's Degree in Information Technology or equivalentHas a minimum of 10-15 years' experience in managing SOC (Security Operations Center) for a 24/7 public facing enterprise system especially in monitoring incoming threats and implementation of necessary controls, policies and procedures.Investigate and remediate security incidentsHas good communication skills to effectively coordinating across different teams in security policy implementations and incident management.Can be able to do post-incident processes such as RCA (root cause analysis) documentation as needed by the stakeholders for future process improvement.Expert in patch management and patching monitoring to make sure that patches are deployed in a timely manner.Prior experience and background with malware analysis and reverse engineering.Prior experience and background in forensic and malware investigation.Prior experience and background in Bug-Bounty initiative preparation.With relevant certifications such as in operating system platform (MCSE-Windows / Linux), network and security (CEH) and Trend Micro Certified Security Master (TCSM) or equivalentExperience in handling and responding to internal and external Audits.Able to work under extreme pressure and challenging timelines with the need to support weekend downtimes.Ensure that all Security Level KPIs and SLAs are met at the contract level.
Bernice Mae Nocum Rallonza EA License No. 02C3423 Personnel Registration No. R1442141