Total 487 it auditor job vacancies in Legal / Public / Security category in The United States of America

Job Responsibilities

• Responsible for conducting audit to assess organizations' Information Security Management System and related Statement of Applicability (SoA) for conformity with ISO/IEC 27001 requirements;
• Conduct other related Information Security, Cybersecurity, Data Protection audits
• Prepare audit plans for ISO audits and audit reports and submit within the required timeline;
• Ensure assigned audits are carried out in compliance with accreditation requirements;
• Review audit reports as and when assigned by Operations team;
• Follow-up closely with client on NC notes and take necessary actions to address and close queries promptly;
• To carry out any other task assigned by Operation Manager;
• Ensure compliance with Corporate’ policy & procedures, ISO/IEC 17021, ISO 19011 standard requirements;
• Manage the entire audit process from planning, conducting, reporting, and following up on the assigned audits.
• Conduct and develop course materials related to Information Security, Cybersecurity, Data Protection for trainings/workshops/seminars
• Support in technical review of audit reports and technical advice to Sales Team and Certification Team as and when required.

Knowledge/ Skills/ Competencies Required (if applicable)

• Minimum Possess a professional degree in Computer Science/Information Security/Cybersecurity or related fields to Information Technology
• Minimum 4 years working experience and at least two years are in a role or function relating to information security/Cybersecurity
• Successfully completed a Lead Auditor Course in ISO/IEC 2700 Information Security Management System (ISMS)
• Having completed training courses in Singapore PDPA Fundamentals/Practitioner and holding industry certifications like CISA, CIPM, CISSP will be advantageous
• Detailed and customer-oriented with strong interpersonal skills and a team player Excellent communication, report writing, presentation and analytical skills
• Willing to travel overseas to conduct audits;
• Computer literacy for MS Word, Excel, and PowerPoint;
• Professional training will be provided
• Be able to work independently with high level of initiative and resourcefulness
• Candidates with related working experiences are welcome for trainee position.

About the Client:

Our client is a Reputed Corporate and Investment Bank

Responsibilities:

• Production Level 3 support for Network and Security infrastructure.
• Actively involved in incident management (fault investigation, resolution escalations of all monitoring alerts and user-initiated problem calls/tickets) and request management
• Provide technical approval for any changes into Data Security systems and is accountable for any technical changes in the environment.
• involve in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team
• Ensures activity is performed in compliance with norms, standards, processes and procedures
• Gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting
• Ensures documentation is up to date and relevant for use
• Lead the continuous improvement initiatives
• responsible to drive and deliver root cause for any high severity issues
• Focus on automation and optimum use of the team to improve efficiency

Requirements:

• Degree in Computer Science or Information Technology or Engineering.
• 6+ years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions
• Knowledge of different domains of IT Security
• Working & hands-on experience in administering the IT Security Solutions
• Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions
• Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;



Interested candidates, who wish to apply for the above position, please send in your resume to Mohamed.basith@persolkelly.com

We regret that only shortlisted candidates will be contacted.

EA License No. 01C4394

EA Personnel Reg.No. R1104824 (Samsudeen Mohamed Basith)

This is in partnership with Employment and Employability Institute Pte Ltd (“e2i”). e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives. By applying for this role, you consent to e2i’s PDPA.

“By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its local and overseas subsidiaries and affiliates collecting, using and disclosing your personal data to prospective employers/companies based in any country for purposes of evaluating suitability for employment, conducting reference checks, administering employment related services and such other purposes stated in our privacy policy. Our full privacy policy is available at www.persolkelly.com.sg. If you wish to withdraw your consent, please drop us an emailto let us know. Please feel free to contact us if you have any queries.“

Position

Data Security Specialist - Data Security and Endpoint Security

Data Security Specialist is a technical Specialist role within the Data Security Services team and will be responsible for managing, administration and supporting the Data Security and Endpoint Security technologies for the bank.

Person will be the technical point of contact for the Run team and the related activities to data security and will be the last level of escalation for the Security specialists in the team. He/She is also responsible for the technical transition and validation of Security services from other regions to Singapore. He/She will be involved in projects and POC’s that may involve security services. He/She works with continuous improvement principles. He/She is equivalent to the Subject Matter Specialist on the technologies within data security.

Data Security Services team in Singapore is responsible for day-to-day operational services on the infrastructure of Europe (mainly France and UK) and Asia remotely from Singapore. France infrastructure represents approximately 80% of the worldwide production activities of the company in Singapore.

Team works in Europe time zones and this role will be aligned primarily to Paris working hours. Flexible rotations are followed based on the nature of duties.

The operational support of the team covers the following technical scope:

• Endpoint Security technologies – Anti-virus management, Host Intrusion Prevention System etc.
• Data Leak Prevention systems. - Email Prevent, Web Prevent, Endpoint Protect,
• Encryption Solutions: Disk Encryption, File and Folder encryption,
• Database Audit Monitoring solutions
• Email and Web Phishing Prevention solutions.
• Vulnerability Management

Detailed Job Responsibilities

The Specialist has a wide spectrum of responsibilities and actions. Person will be responsible for following (but not limited to) responsibilities in day-to-day work:

As the Specialist of the team, he/she:

• act as the last level of escalation for the team members
• own Incident, Problem and change management process for the team
• assigns technical tasks and manages delegation
• animates the team to encourage collaboration and sharing of practices
• participates to recruitment process for the team

As the Specialist of his/her scope of activity, he/she:

• is actively involved in incident management (fault investigation, resolution escalations of all monitoring alerts and user initiated problem calls/tickets) and request management
• Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective
• Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team
• Participates in global Infra events (like Power down and DR Tests)
• ensures activity is performed in compliance with norms, standards, processes and procedures
• gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting
• ensures documentation is up to date and relevant for use
• lead the continuous improvement initiatives
• responsible to drive and deliver root cause for any high severity issues
• Focus on automation and optimum use of the team to improve efficiency
• Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
• Complete all mandatory training as required to attain and maintain competence
• Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Work Schedule

• Work schedule is mainly focused to support Asia and EMEA (Paris) time zone; however, may have to support during non-offce hours for critical incidents or escalation as per the assigned on-call support requirements;
• Rotational Shift schedule is followed;
• Work Hours: 2 PM – 11 PM SGT (with 1 week of General shift 9 AM – 6 PM SGT).

Qualifications and Profile

Functional

• 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions;
• Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science;
• Knowledge of different domains of IT Security;
• Working & hands-on experience in administering the IT Security Solutions;
• Must have experience in working in similar Production setup in Run (Operations) mode;
• Ability to apply risk based approach while working on assigned responsibilities;
• Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;
• Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;
• Excellent in analytical, communication and documentation skills;
• Ability to organize work and be able to priories work as per the needs of Production Operation’s needs;
• Must have strong understanding of ITIL processes and comfortable working in process oriented environment;
• Ability to work independently and as well as a part of team and is able to work under minimal supervision;
• Should have time management skills and able to manage work in fast moving environment;
• Excellent written and oral English language skills;
• Knowledge of French language is preferred.

Technical

• Hands-on experience on Symantec Data Loss Prevention (DLP);
• Highly proficient in data leakage prevention (DLP) technologies - troubleshooting and configuration management;
• Deployment, integration and administration experience of various components of Symantec DLP:

- Symantec Endpoint Protect

- Symantec Web Prevent

- Symantec Email Prevent

- Symantec Enforce

• Must have experience in defining, designing and configuring DLP Policies as per the business requirements;
• Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution;
• Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable;
• Professional Certifications:

- CISSP certified is highly preferred

- Symantec Certified Specialist: Administration of Data Loss Prevention (any version) is highly preferred.

• Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.

SKILLS MATRIX

Technical skills

• Symantec Data Loss Prevention Administration
• (DLP Policy/Rules creation Specialistise): Must to have
• Trend Micro Deep Discovery Email Inspector (Phishing Prevention): Good to have
• Symantec Endpoint Protection (Anti-Virus): Good to have
• Phyton, Regular Expression, Powershell: Good to have

General skills

• Ability to prioritize effectively: Must to have
• Ability to work autonomously: Must to have
• Ability to work successfully in a team: Must to have
• Adaptability to changing environments: Must to have
• Inter-personal skills: Must to have

Management skills

• Ability to deal with issues, time management: Critical
• Manage escalated incidents: Critical
• Capacity to cooperate / work across discipline: Critical
• Capacity to develop others: Desired

Language skills

• English: Must to have
• French: Good to have

Next Step

Prepare your updated resume and expected package.

Simply click on 'Apply here' or email to prasant.sirohi@adecco.com to drop your resume

All shortlisted candidates will be contacted.

Prasant Sirohi

EA License Number: 91C2918

Registration Number: R22106307

Responsibilities:

• Designing, implementing, and managing security solutions to protect against cyber threats while ensuring seamless IT Infrastructure, Servers and Applications performance.
• Continuously optimize existing IT Infrastructure, Servers and Applications security policies and models, monitor and respond to threat detection event alerts and response handling, and enhance overall detection levels and coverage.
• Be responsible for vulnerability management (CVE, CVSS, OWASP Top 10), container, network & systems security, as well as cloud security tools and services
• Design, configure, and maintain firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and other security devices.
• Monitor and analyze security events and logs to identify potential vulnerabilities and incidents.
• Threat Prevention & Incident Response: Identify, investigate, and resolve security breaches and incidents.
• Develop and implement strategies to mitigate identified risks and vulnerabilities.
• Ensure all compliance and security control functions are performed timely and orderly.
• Drive continuous improvement of procedures and processes related to cybersecurity process and operations monitoring.
• Conduct regular audits of IT Infrastructure, Servers and Applications security to ensure compliance with security policies.
• Maintain compliance with industry standards such as ISO 27001, GDPR, or SOC 2.
• Create and maintain detailed network diagrams and security documentation.
• Work closely with IT teams to ensure robust security integration across systems.
• Educate employees on security best practices and emerging threats.
• Manage tools like SIEM, antivirus solutions, IDS/IPS and DLP software.
• Stay updated with the latest technologies, trends, and vulnerabilities in cybersecurity.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Relevant certifications (e.g., CISSP, CEH, CCNP Security, Palo Alto PCNSA) are a plus but not mandatory.
• 7 to 12 years of experience in the designing, implementing, and managing of IT Infrastructure, Servers and Applications security according to industry standards such as ISO 27001, GDPR, or SOC 2.
• Expertise in one or more IT Security Engineering topics, such as Secure Browsing, PAM, PKI, or Multifactor Authentication.
• Proven ability to contribute to the development of architecture, concepts, and processes in IT security.
• Strong understanding of network protocols (TCP/IP, DNS, HTTP, etc.), firewalls, VPNs, intrusion detection / prevention systems (IDS/IPS), vulnerability management (CVE, CVSS, OWASP Top 10) and etc.
• Proficiency in firewall technologies (e.g., Fortinet, Palo Alto, Cisco ASA).
• Experience with vulnerability scanning tools and penetration testing.
• Experienced with cloud environments and cloud security principles. Knowledge in AWS/Azure cloud security tools and services.

Title: IT Security Analyst

· 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions;

· Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science;

· Knowledge of different domains of IT Security;

· Working & hands-on experience in administering the IT Security Solutions;

· Must have experience in working in similar Production setup in Run (Operations) mode;

· Ability to apply risk based approach while working on assigned responsibilities;

· Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;

· Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;

· Excellent in analytical, communication and documentation skills;

· Must have strong understanding of ITIL processes and comfortable working in process oriented environment

Position Type :

Type Of Hire :

Education Desired :

Travel Percentage :

As the world works and lives faster, FIS is leading the way. Our fintech solutions touch nearly every market, company and person on the planet. Our teams are inclusive and diverse. Our colleagues work together and celebrate together. If you want to advance the world of fintech, we’d like to ask you: Are you FIS?

About the team:

It’s an amazing opportunity to join a Talented team of innovative and committed folks doing interesting work at the world’s largest global provider dedicated to financial technology solutions!

What you will be doing:

• Develop policy and standards for API security.
• Experience and knowledge in Application Programming Interface (API), static application security testing (SAST) and related tools like Veracode / Checkmarx / Fortiy.
• Experience and knowledge in Burp Suite tool for dynamic testing (DAST).
• Primarily responsible for API application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management)

What you bring:

• At least 2 years of working experience in application security that includes API, SAST and DAST along with Checkmarx, Veracode
• Experience and knowledge in static application security testing (SAST) and related tools like Veracode / Checkmarx / Fortiy.
• Experience and knowledge in Burp Suite tool for dynamic testing (DAST).
• Primarily responsible for application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management).
• Knowledge of security technologies (encryption, data protection, design, privilege access, etc.)
• Proficiency in time management, communications, decision making, presentation and organizational skills
• Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules
• Excellent decision-making, analytical and problem solving skills
• Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization
• Experience establishing and maintaining effective working relationships with employees and/or clients
• Strong knowledge of development and application security
• Hands-on experience performing application API security assessment, static and dynamic security assessments with tools such as: Burpsuite, OWASP ZAP, AppScan, WebInspect, Fortify, Veracode, Checkmarx, etc.
• Knowledge of OWASP Top 10/ SANS Top 25, identify vulnerabilities via manual and automated testing methods and how to effectively remediate vulnerabilities associated with each
• Expert knowledge of information security principles, web applications, and intermediate familiarity with malicious code and common hacking techniques used by malicious actors
• Experience conducting risk assessments and performing threat modeling of applications
• Ability to collaborate with teams remotely

What we offer you:

A career at FIS is more than just a job. It’s the change to shape the future of fintech. At FIS, we offer you:

• A voice in the future of fintech
• Always-on learning and development
• Collaborative work environment
• Opportunities to give back
• Competitive salary and benefits

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

Job Description:

- Act as the last level of escalation for the team members

- Own Incident, Problem and change management process for the team

- Assigns technical tasks and manages delegation

- Animates the team to encourage collaboration and sharing of practices

- Participates to recruitment process for the team

- Is actively involved in incident management (fault investigation, resolution

- Escalations of all monitoring alerts and user initiated problem calls/tickets) and request management

- Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective

- Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team

- Participates in global Infra events (like Power down and DR Tests)

- Ensures activity is performed in compliance with norms, standards, processes and procedures

- Gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting

- Ensures documentation is up to date and relevant for use

- Lead the continuous improvement initiatives

- Responsible to drive and deliver root cause for any high severity issues

- Focus on automation and optimum use of the team to improve efficiency

- Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.

- Complete all mandatory training as required to attain and maintain competence

- Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time;

- Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Requirements:

Functional

- 8 - 10 years of IT Security experience in administration and management of IT Security technologies primarily Symantec Data Loss Prevention, Symantec Endpoint Protection, Email Security, Data Classification and other endpoint & data security solutions;

- Should be a bachelors/masters/engineering graduate or equivalent technical degree in Information Technology or Computer Science;

- Knowledge of different domains of IT Security;

- Working & hands-on experience in administering the IT Security Solutions;

- Must have experience in working in similar Production setup in Run (Operations) mode;

- Ability to apply risk based approach while working on assigned responsibilities;

- Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;

- Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;

- Excellent in analytical, communication and documentation skills;

- Ability to organize work and be able to priories work as per the needs of Production Operation’s needs;

- Must have strong understanding of ITIL processes and comfortable working in process oriented environment;

- Ability to work independently and as well as a part of team and is able to work under minimal supervision;

- Should have time management skills and able to manage work in fast moving environment;

Technical:

- Hands-on experience on Symantec Data Loss Prevention (DLP);

- Highly proficient in data leakage prevention (DLP) technologies - troubleshooting and configuration management;

- Deployment, integration and administration experience of various components of Symantec DLP:

- Must have experience in defining, designing and configuring DLP Policies as per the business requirements;

- Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution;

- Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable;

Professional Certifications:

- CISSP certified is highly preferred

- Symantec Certified Specialist: Administration of Data Loss Prevention (any version) is highly preferred.

- Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.

Position Type :

Type Of Hire :

Education Desired :

Travel Percentage :

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

[Job ID:765937]

Role Objectives:

• The successful candidate will be a crucial part of our team, using their expertise in IT security to manage and maintain systems for not only our company but also our group companies.
• The role is not limited to security support but includes account management and technical support for clients and vendors.
• With a strong grasp of our cloud-based infrastructure tools, the candidate will be fundamental in providing continuous technical support to clients and internal teams within the APAC region.

Responsibilities :

• Implement and maintain security configuration across our IT infrastructure (including M365, Google Workspaces, ClickUp, Bitbucket, and etc.)
• Guide IT managers of the group companies per the headquarters' directive.
• Effectively manage and analyze system logs on an ongoing basis.
• Remain updated about the latest security vulnerabilities and take immediate action if necessary.
• Collaborate with internal and external parties to ensure secure, smooth operations.
• Handle client inquiries about our proprietary applications.
• Automate redundant tasks using programming language skills.
• Regularly monitor and maintain system metrics dashboard and alerts.
• Educate colleagues and enhance company documentation about our IT infrastructure.
• Collaborate closely with the Tech department at Japan HQ.
• Any other ad-hoc duties assigned

Requirements:
[MUST]

• At least 5 years of extensive experience in IT-related fields.
• Proficient reading and writing skills in Japanese for liaising with Japanese speaking counterparts.
• Exceptionally good communication and interpersonal skills.
• Clear knowledge of AWS, Azure(Entra), and/or GCP Services, relating to software development.
• Strong ability to configure SIEM and Power BI tools.
• In-depth familiarization with account management and data security.
• Experience in creating, monitoring and responding to security events.

[ADVANTAGE]

• Proficiency in additional languages such as Chinese, Malay, or Thai for liaising with Chinese/Malay/Thai speaking counterparts.
• Proven experience with Cyber Incident Response Plan (CIRP).
• Expertise in vulnerability management, penetration testing, and implementing security incident response processes.
• Extensive experience in developing, implementing, and maintaining security policies.
• Knowledge of network security design and implementation.
• Experience in using vulnerability scanning tools and security tools.
• Proven record of enhancing cloud security through policy implementation and monitoring.
• Experience in promoting social engineering and phishing countermeasures.
• Ability to provide in-house security training.
• Professional security-related certifications such as CISSP, CISM, CEH are highly desirable.

We regret that only shortlisted candidates will be notified. However, rest assured that all applications will be updated to our resume bank for future opportunities.

Please kindly refer to the Privacy Policy of Good Job Creations for your reference: https://goodjobcreations.com.sg/en/privacy-policy/

EA Personnel Name: Ochi Madoka
EA Personnel Registration Number: R24125474
EA License No.: 07C5771

Are you an expert in IT, Infrastructure and system security? Are you looking for that next step in your career? If so, reach your full potential and join Quarriers as our IT Operations and Security Manager!

Your new opportunity

Quarriers have a rare and exciting opportunity for an IT Operations and Security Manager to lead and drive the vision of our state-of-the-art technology and systems across multiple services. You will be responsible for high quality delivery, autonomy over design, implementation and management of a small team of IT professionals.

As a key player within the IT team, you will work at a strategic level alongside the Head of IT ensuring that both user needs and organisational objectives are met. You will be responsible for the delivery and implementation of current and future IT needs while aligning various aspects of IT support Scotland wide.

If you are looking for an IT role with a difference, where your technical knowledge and skills directly support staff and the people, we support then this is the perfect opportunity for you!

This is a full-time permanent role working 35 hours per week in line with our agile working policy, which blends home-working with office time and service visits.

What you will need to bring to the role

• Qualified to degree level or relevant equivalent experience.
• Extensive knowledge of infrastructure implementation and support, including Networking, Telephony and Storage.
• Proven experience and knowledge of managing IT systems and packages including Microsoft Technology stack (O365, Azure, Intune)
• Responsibility for implementing and maintaining Cyber Security systems, processes and Accreditation (Cyber Essentials Plus)
• Be forward thinking in applying new technologies into our support and medical services, like AI, Applied technology and IOT
• Excellent problem solver who can work to strict deadlines.
• Ability to manage business relationships effectively and deliver positive outcomes.
• Excellent IT, analytical and strategic planning skills.
• Experience of leading a team of IT professionals.

What you will get in return

• Substantial holiday entitlement.
• Generous workplace pension.
• Family-friendly working policies and procedures.
• Life Assurance.
• Wider benefits including our Employee Assistance Programme, free physiotherapy & occupational health support.

Full details of this role can be viewed on the attached Job Role Profile 

Quarriers have Investors in People Platinum accreditation and are a Scottish Living Wage Employer 

We are looking for a skilled IT Security Engineer to join our team for a 1-year contract. The successful candidate will bring strong expertise in information security and hands-on experience managing security projects from start to finish.

Responsibilities:

• Lead and execute security projects across various domains, including endpoint, network, and application security.
• Implement and manage security tools, such as Web Proxy, Endpoint Protection, Email Security, and Vulnerability Scanners.
• Assess system security through threat modeling and propose effective solutions.
• Explore and integrate emerging security technologies to strengthen the organization’s security posture.
• Collaborate with teams to ensure secure deployment and operation of cloud environments.

Requirements:

• Bachelor’s degree in Computer Science, Computer Engineering, Information Security, or a related field.
• 5 years experience in IT Security, with deep expertise in one or more security domains.
• 3 years hands-on experience in end-to-end IT security projects or project delivery.
• Familiarity with security tools and frameworks.
• Security certifications (CISSP, CISM, AWS Certified Security, etc.) are highly desirable.
• Experience with cloud security is an added advantage.
• Thrives in fast-paced and demanding environments.

This role is a great opportunity to work on impactful security projects in a dynamic environment.