Manager IT Security & Governance

Back

Manager IT Security & Governance

Information Technology
Closing date: 29-Apr-2025

Description

RESPONSIBILITIES:

  • Manage IT security, data protection and IT security risks on corporate level.
  • Conduct risks analysis, risks assessment and implement risks mitigation measures.
  • Develop and implement information security policies and procedures.
  • Implement and support international standard ISO/IEC 27001. Bring to life ISO/IEC 27001 certification.
  • Develop and control of change management, assets management, and license management procedures. Perform internal audit to detect weaknesses and vulnerabilities of IT systems and IT infrastructure. Perform measures for improving IT security level and elimination IT infrastructure vulnerabilities.
  • Implement and control of work current IT security solutions and related services, such as firewalls, web proxy, IDS/IPS, VPN server, NAC server, SIEM, SFTP server and others.
  • Implement and control of new IT security solutions and upgrade current ones.
  • Asses and control security aspects of IT services during development, implementation and production usage.
  • Perform actions to enhance information security awareness of employees of the company.
  • Consult IT staff and other employees of the company on information security related questions.

REQUIREMENTS:

  • University degree in Information security or a related field.
  • Minimum of 7 years of experience in Information security field.
  • Minimum of 2 years of experience in IT infrastructure administration field (system administration/network administration)
  • Deep knowledge and excellent understanding of Information security fundamentals.
  • Deep knowledge and excellent understanding of IT infrastructure (Windows and Linux operation systems architecture, network architecture, network protocols, Web applications, virtualization, etc.). Knowledge and understanding of international standards in IT security area, in particular, ISO/IEC 27001, PCI DSS.
  • Hans-on experience in implementation and administration on the following security solutions: • firewalls (Cisco ASA, Microsoft TMG, CheckPoint) • Web proxy, URL filters • IDS/IPS • SIEM • NAC and NPS servers • VPN servers • FTP/SFTP servers • Antivirus and Antispam - Hans-on experience in configuration and support of Cisco devices. - Hans-on experience in configuration and administration of Active Directory, DNS servers, DHCP, Domain policies, virtual infrastructure. - Professional certification would be an asset (CISSP, CISM, GSEC, CompTIA Security+, CCNA Security, CCNP Security or others).
  • English language (intermediate level and higher).

LOCATION
Almaty , Kazakhstan

Full day

Closing date: 29-Apr-2025