Governance risk compliance

الوصف الوظيفي
• Develop and maintain Vulnerability management framework including definition of periodic schedule and procedures to perform security assessments for applications and infrastructure with remediation timelines.

• Perform periodic vulnerability scans on servers, databases, network devices, end points and application targets; support and provide vulnerability scan and reporting data for escalation and management reporting

• Identify and provide mitigation/fix steps for infrastructure, databases and application vulnerabilities

• Partner with business application teams to reduce risk of deploying exploitable and misconfigured applications to production

• Track ongoing remediation efforts

المهارات
• A bachelor’s or master’s degree in computer science, information systems or other related field

• Qualification in CISSP, CRISC, CISM, CISA, ISO 27001 Lead Auditor, CEH, SANS training/certification or similar security certification

• Experienced with security threat and vulnerability assessments

• Knowledge of OWASP, SANS Top 20 Critical Security Controls and NIST Vulnerability Database (CVE & CCE)

• Knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, DNS, etc., Windows and Unix Operating Systems, databases and solid understanding of information, host and network security, common intrusion techniques, and risk management concepts

تفاصيل الوظيفة
منطقة الوظيفة ظهران الجنوب, المملكة العربية السعودية
قطاع الشركة تطوير البرمجيات
طبيعة عمل الشركة صاحب عمل (القطاع الخاص)
الدور الوظيفي الحماية
نوع التوظيف دوام كامل
الراتب الشهري غير محدد
عدد الوظائف الشاغرة غير محدد
المرشح المفضل
المستوى المهني متوسط الخبرة
عدد سنوات الخبرة الحد الأدنى: 4 الحد الأقصى: 8
منطقة الإقامة المملكة العربية السعودية
الجنس ذكر
الشهادة بكالوريوس/ دبلوم عالي
العمر الحد الأدنى: 25 الحد الأقصى: 38

https://www.bayt.com/ar/saudi-arabia/jobs/governance-risk-compliance-4147461/