Apply on Employer Site

Amideast · 3 days ago

Cybersecurity and Data Protection Officer

United States

Full-time

Remote

Senior Level

5+ years exp

Amideast is a leading organization focused on education and training in the Middle East and North Africa. They are seeking a Cybersecurity and Data Protection Officer to ensure the secure operation of computer systems and network connections while maintaining compliance with cybersecurity standards.

Education

Responsibilities

Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices

Implement, maintain, and monitor security compliance such as ISO, NIST, and SOC

Design and advise on the implementation of disaster recovery plan for operating systems, databases, networks, servers, and software applications

Design and implement incident response plans based on filed office laws and regulations

Design, implement, and monitor data protection policies and procedures

Assess need for any security reconfigurations and execute them if required

Conduct email phish-hunting and submit malicious senders for blocking through anti-phishing policy

Execute Amideast’s security awareness program and report on user compliance

Keep current with emerging security alerts and issues

Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts

Interact and negotiate with vendors, outsourcers, and contractors to obtain protection services and products

Recommend, schedule, and perform security improvements, upgrades, and/or purchases

Participate in deploying, managing, and maintaining all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software

Guide connection security for local area networks, Company website, Company intranet, and e-mail communications

Guide the security of Amideast databases and data transferred both internally and externally

Design, perform, and/or oversee penetration testing of all systems to identify system vulnerabilities

Design, implement, and report on security system and end user activity audits

Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity. Interpret activity and make recommendations for resolution

Recommend, schedule (where appropriate), and apply fixes, security patches, disaster recovery procedures, and any other measures required in the event of a security breach

Evaluate new security software and/or technologies

Provide on-call security support to end-users

Qualification

Cybersecurity degreeCertified Ethical HackerPenetration testingSecurity compliance standardsData protection policiesNetwork administrationVulnerability assessmentsRegulatory knowledgeAnalytical skillsFluency in ArabicFluency in FrenchInterpersonal skillsOrganizational skillsAttention to detailTeam collaboration

Required

College diploma or university degree in the field of computer science with focus on Cybersecurity

Five (5) years equivalent work experience

One or more of the following certifications: Certified Ethical Hacker (CEH), GIAC Security Essentials Certification, GIAC Certified Enterprise Defender, ISACA Certified Information Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP

Knowledge of regulatory requirements and industry standards, such as GDPR, HIPAA, NIST, and ISO 27001

Hands-on experience implementing at least one security standard compliance for an organization and leading the certification process

Knowledge of applicable practices and laws relating to data privacy and protection and working experience implementing at least one privacy standard

Knowledge of law enforcement practices and procedures in the US and the MENA region

Intuition and keen instincts to preempt attacks

Strong practical experience conducting penetration testing and vulnerability assessments

High level of analytical and problem-solving abilities

Ability to conduct research into security issues and products as required

Broad hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices

In-depth technical knowledge of network, PC, Microsoft, and Linux operating systems

Working technical knowledge Microsoft Cloud Security Portal for Office365

Working technical knowledge of current systems software, protocols, and standards

Strong knowledge of TCP/IP and network administration/protocols

Hands-on experience with devices such as hubs, switches, and routers

Strong interpersonal and oral communication skills

Highly self-motivated and directed

Strong organizational skills

Excellent attention to detail

Ability to effectively prioritize and execute tasks in a high-pressure environment

Able to work in a team-oriented, collaborative environment