IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
About the role
- Security Engineer focusing on defensive operations and ensuring web application security. Collaborating with red teams and implementing security measures for cloud environments.
Responsibilities
- Implement defensive controls for web applications based on red team pentest findings (WAF configuration, secure headers, input validation).
- Monitor web application logs to detect exploitation attempts and anomalies.
- Execute incident response for web security incidents, perform root cause analysis, and validate vulnerability remediations.
- Harden cloud infrastructure configurations (IAM policies, encryption, network controls) from cloud security assessment results.
- Develop and maintain security monitoring playbooks, alerting rules, and remediation procedures for web/cloud environments.
- Collaborate with red team during purple team exercises to validate defensive effectiveness.
Requirements
- At least 2 years of experience in defensive security operations or SOC analyst roles.
- Strong understanding of web application security defenses (WAF, secure coding, API protection).
- Experience with a SIEM platform and log analysis for threat detection.
- Proficiency in cloud security services (AWS GuardDuty, Config, IAM ...or Azure/GCP equivalents).
- Skilled in scripting for security automation (Python, Bash) and basic Linux/Windows administration.
- Familiarity with MITRE ATT&CK framework and NIST/CIS compliance standards.
- Professional certifications like CompTIA CySA+, GCIH, or cloud security certs are advantageous.
Benefits
- Competitive Compensation
- Performance bonus (up to 2-month salary)
- Performance review 2 times/ year
- Extra Premium Healthcare & Annual Health-check
- 15 days of annual leave
- A laptop is provided.
- Community Tech activities.
- A fun & dynamic environment and freedom to be creative.
- Modern office with a flexible, relaxing zone.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Security Specialist ensuring the protection of company and government assets. Conducting daily security functions and providing technical support while maintaining compliance with regulations.
Information System Security Officer ensuring security controls and risk mitigation in Aerospace. Collaborating with teams to assess threat landscapes and guide clients with actionable plans.