Information Security Specialist

Islamabad, Pakistan | Posted on 04/16/2024 iENGINEERING is seeking a knowledgeable and experienced Information Security Specialist tojoin the team. The ideal candidate will possess expertise in analyzing andidentifying security issues with web applications and portals. As anInformation Security Specialist, you will be responsible for ensuring theconfidentiality, integrity, and availability of our organization's informationassets by proactively identifying vulnerabilities and implementing appropriatesecurity measures.

Requirements

• Conduct thorough security assessments of webapplications, portals, networks, and local machines to identifyvulnerabilities, weaknesses, and potential threats.
• Develop and implement strategies to mitigatesecurity risks and enhance the overall security posture of web-based systems.
• Collaborate with development teams tointegrate security best practices into the software development lifecycle.
• Perform penetration testing and vulnerabilityscanning to identify and prioritize security issues.
• Stay up-to-date with the latest securitytrends, threats, and technologies to continuously improve security measures.
• Provide guidance and recommendations tostakeholders on security best practices and risk management strategies.
• Respond to security incidents, conductinvestigations, and implement corrective actions as necessary.
• Document security policies, procedures, andguidelines to ensure compliance with industry standards and regulations.
• Conduct security awareness training sessionsfor employees to promote a culture of security awareness and compliance.
• Participate in the evaluation and selectionof security tools and technologies to support the organization's securityobjectives.
• Seeking an ideal candidate for ISO 27001 andISO 27701 to lead implementation, maintenance, and compliance of bothinformation security management system (ISMS) and privacy informationmanagement system (PIMS) within the organization.

• Bachelor's degree in Computer Science,Information Technology, or a related field.
• 3+ years of experience in the relevant field.
• CISSP, CEH, or similar certifications arehighly desirable.
• Proven experience in information security,with a focus on web application security.
• In-depth knowledge of common web applicationvulnerabilities and secure coding practices.
• Experience with security assessment tools.
• Strong understanding of networking protocols,web technologies, and application architectures.
• Excellent analytical and problem-solvingskills with the ability to think critically and strategically.
• Effective communication skills, with theability to convey complex technical concepts to non-technical stakeholders.
• Ability to work independently andcollaboratively in a fast-paced environment.
• Strong commitment to maintaining the higheststandards of integrity and confidentiality.
• Opportunities to work on best-in-classtechnology solutions
• Competitive salary and benefits package
• Centrally located office in Blue Area,Islamabad
• A competitive compensation package
• 20 days of annual/sick leaves plus gazettedholidays
• An empowering culture with a high degree offreedom