Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Jobs
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[SJ-JOB] Technology Risk Consultant, Riyadh

from [ramdas . iyer] Network Security [Permanent Link]
Subject: [SJ-JOB] Technology Risk Consultant, Riyadh
Date: 20 Apr 2007 19:19:32 -0000 
---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Technology Risk Consultant
Location:       Riyadh, , Saudi Arabia
Type:           Permanent P/T

Closing Date:   2007-05-17

Role Objective:

Member of the IT Risk section within the Systems Security Department. 
Responsible for performing regular risk assessments, developing risk mitigation 
strategies as per the Information Risk Management (IRM) framework of the 
section. Will assist the section head in activities pertaining to risk 
management, policy and standards development and maintenance

Responsibilities & Duties:

&#149;  Assists the Section Head in performing his duties and responsibilities.
&#149;  Participates in internal team meetings, and reviews the regular risk 
assessment requests including ad-hoc risk assessment requests with members of 
the committee to approve/disapprove these requests.
&#149;  Performs the approved ad-hoc risk assessment requests.
&#149;  Develops and updates the Threats and Vulnerabilities databases and the 
controls database.
&#149;  Plans and prepares for risk assessments.
&#149;  Identifies the owners and key users of the area or process under review 
and provides input to the Section Head for overall planning.
&#149;  Identifies common and specific threats and vulnerabilities of the 
systems and databases under review.
&#149;  Performs detailed threat and vulnerability impact assessment, assigns 
impact ratings and makes adjustments in the overall risk ratings for the 
systems and databases being assessed.
&#149;  Identifies risk mitigation options available, evaluates and analyzes 
feasibility, effectiveness, efficiency and cost of risk mitigation 
options/controls and proposes the most appropriate controls for the systems and 
databases being assessed. 
&#149;  Identifies the impact of the new threats and vulnerabilities on various 
assets. 
&#149;  Provides risk assessment reports. 
&#149;  Maintains defined policies and standards, updates them and defines new 
policies as and when required.
&#149;  Keeps a tab on new technologies and risk areas within them
&#149;  Project team member on projects assigned by the section head
&#149;  Functions as a point of escalation for Security Related incidents.
&#149;  Maintenance of all relevant IT Risk documentation.
&#149;  Participates in Project meetings with ITD and within SSD.
&#149;  Provide coordination with ITD as required



JOB REQUIREMENTS
---------------------------------------------------
Technical Skills:

&#149;  Good knowledge of Banking processes.
&#149;  Excellent knowledge of information security concepts, methodologies and 
best/leading practices.
&#149;  Excellent analytical skills. 
&#149;  Excellent risk analysis skills.
&#149;  Excellent technical writing skills.
&#149;  Good Knowledge on ethical hacking and penetration testing.
&#149;  Good knowledge on risk assessment tools.

Administrative Skills:

&#149;  Excellent coordination skills.
&#149;  Excellent time management skills.
&#149;  Excellent teaming skills

Management Skills:

&#149;  Good reporting skills. 
&#149;  Excellent communications skills.
&#149;  Experience in working in a multi-vendor environment.
&#149;  Good interpersonal skills.
&#149;  Good presentation skills.



CONTACT
---------------------------------------------------
Ramdas Iyer,
Associate HR Consultant,
Indusface Consulting Pvt Ltd,
Ph: +91-265-6562666 / 6562888.
Mobile:+91 9924114960

A Reputed Bank
Ramdas Iyer

ramdas.iyer@indusfaceconsulting.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [SJ-JOB] Technology Risk Consultant, Riyadh, ramdas . iyer <=
Previous by Date:  [SJ-JOB] Management, Northern, careers
Next by Date:  [SJ-JOB] Security Auditor, Berkshire, SecWizRec
Previous by Thread:  [SJ-JOB] Management, Northern, careers
Next by Thread:  [SJ-JOB] Security Auditor, Berkshire, SecWizRec
Indexes:  [Date] [Thread] [Top] [All Lists]