Rwanda Information Society Authority IT Security Specialist Jobs in Rwanda

Rwanda Information Society Authority IT Security Specialist Jobs in Rwanda

Job Description

Determine security violations and inefficiencies by conducting periodic audits

Designing and implementing security networks and protocols.

Verifying the correctness and effectiveness of all the different security engagements processes;

Maintaining security controls based on risk assessments;

Giving advice on security improvements and additional controls;

Providing guidance and oversight for the first line of defense;

Proactively testing and monitoring high risk areas to ensure policy, procedures and processes implemented by the first line are working as intended to comply with rules and regulations;

Acting as a delegate for internal audit;

Identify and solve potential and actual security problems

Assess the current situation, evaluating trends and anticipating security requirements.

Verifying the correct actions set and done on security risk findings, this relating to solving, mitigating or acceptance of the security risk findings;

Inspecting and upgrading hardware to avoid vulnerability points.

Inspecting and testing the security of the network.

Upgrade systems regularly to remain competitive in the field of security

Running penetration tests on upgraded systems.

Responding to security threats.

Drafting security policies and guidelines.

Develop and implement information security standards, guidelines, and procedures.

Training staff on security protocols

Keep users informed by preparing performance reports; communicating system status

Maintain technical knowledge by attending educational workshops

Prepare reports and action plans in the event that a security breech does occur

Organize and conduct tests and “ethical hacks” of the existing security architecture

Monitor the network and provide early warning of abnormalities or problems

Communicate the system status and keep users informed of downtime or changes to the system

Keep technical knowledge current through continuing education

Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues. IT Security Specialist implements vulnerability assessments, configure audits of operating systems, web servers, and databases, and detect patterns, insecure features, and malicious activities in the infrastructure.

Perform research, testing, evaluation, and deployment of security technology and procedures.

Run diagnostics on any changes to data to verify any undetected breaches.

Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.

Develop firewalls to secure the network infrastructure.

Keep current with new intrusion methods and develop protection plans. IT Security Specialist should have an in-depth understanding of vulnerabilities, management systems, and common security applications.

Conduct counteractive protocols and report incidents. IT Security Specialist should provide customized risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.

Grant permissions and privileges to authorized users.

Configure anti-virus systems and consoles and conduct software upgrades.

Manage the pay-per-click (PPC) system from threats, identify, and manage incidents to mitigate risks.

Have an in-depth understanding of OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA, IDS/IPS systems, Burp Suite, Nmap, Nessus, Qualys, and Metasploit, etc.

Minimum Qualifications

Advanced diploma in Computer Science