Senior penetration tester responsible for advanced security testing in various sectors at Combitech. Collaborating with a team of experts, focusing on real threat simulations and enhancing security measures.
About the role
- Drive implementation of security controls across all organization including client facing environments. Senior role working cross-functionally with teams to promote security best practices.
Responsibilities
- Ensure security processes are implemented and in place across all our tools and systems.
- Work with all stakeholders to instil a positive security culture within the organisation.
- Implement suitable controls to protect and manage data globally.
- Agree and implement Security Road Map for the global organisation.
- Run the Security Operations Centre.
- To analyse various methods of controlling information security problems, determine the strengths and weaknesses of each method and implement the suitable solutions.
- Performs security assessments or audits of internal networks and systems.
- Manage relevant third-party suppliers and vendors to support security practices.
- Lead the threat and vulnerability management (TVM), network security, code security, and technical security assessments of vendors, tools, and projects.
- Work closely with product teams, namely, developers, data engineers, and data scientists to promote best security practices.
- Stay up to date with the latest cloud security trends and make recommendations for continuous improvement.
Requirements
- Bachelor’s degree in computer science, information systems, cybersecurity, or a related field preferred.
- 5+ years of experience in cloud security, with hands-on experience in M365 / Azure / AWS;
- Experience working with security concepts in a hybrid cloud environment.
- Experience in SOC, Sentinel and Security functions.
- Hands on experience in managing an enterprise vulnerability management program.
- Strong understanding of cloud security concepts, including IAM, network security, encryption, and secure cloud configurations.
- Knowledge and experience in the areas of M365 Security, Application Security, Data Security, End Point and Mobile Security, and Infrastructure and Network Security.
- Knowledge of security frameworks and standards, such as NIST, ISO/IEC 27001 and OWASP.
- Experience ensuring controls are implemented/automated into the SDLC.
- Ability to translate security-related matters into business terms that are clear and understandable to executives.
- Able to navigate a demanding and high-pressure environment.
- Can think strategically and incorporate business needs into technical roadmaps.
- Ability to work autonomously and to spearhead initiatives.
- Excellent communication and interpersonal skills.
- Good verbal and written communication skills in English.
Benefits
- Have Microsoft Cybersecurity Architect or AWS Certified Security – Specialty certifications.
- Have CISSP, CISM, GSLC, GPEN, or other security certifications.
- Experience with other Cloud providers namely Oracle Cloud;
- Hands-on experience with IaC tooling such as Terraform;
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Physical Security Specialist managing corporate security operations for a global media company in South Korea. Leading security projects, vendor management, and cross - functional collaboration.
Security Engineer enhancing security capabilities for organizations through automation and collaboration. Building secure services and infrastructure in a dynamic engineering environment.
Senior Cloud Security Architect designing and implementing secure architectures across hybrid and multi - cloud environments. Collaborating with teams to drive security strategies aligned with business objectives.
Network Security Engineer securing cloud and AI technologies at Marvell, designing robust security strategies and managing security operations in a global environment.
IT Security/System Administrator maintaining and optimizing IT infrastructure for health care organization. Responsible for security controls, system performance, and user support.
Senior Auditor focusing on digital technology and cybersecurity at GE Vernova. Transforming internal audit capabilities and ensuring effective cybersecurity audit practices.
Audit Manager at GE Vernova managing Digital Technology & Cybersecurity audits. Leading risk - based audits and enhancing audit effectiveness through data analytics tools and team collaboration.
Vice President, Concierge Security at Arctic Wolf transforming cybersecurity concierge services using AI and operational excellence. Strategic role focusing on customer engagement, operational excellence, and team leadership.
Cybersecurity Consultant focused on defining and evolving security controls for diverse technology environments. Collaborating on secure architectures and assessing system configurations in cloud settings.