Main responsibilities

  • Performs day-to-day Information Security functions pertaining to access control on various software products, network, and processes
  • Ensure the data security of PSW assets including data encryption, hashing, tokenization, and key management practices that protect data across all applications and platforms
  • Protect the trade related data & information that is confidential in nature
  • Provide guidance to application architects to manage threats and to take preventive measures during application development lifecycle
  • Conduct manual application security testing and source code auditing for a variety of technologies
  • Conduct vulnerability assessment and penetration testing targeting critical data, services, and environments
  • Report underlying security issues and recommend enhanced security protections
  • Perform incidental response and related duties, as required
  • Create a standard set of requirements, technical designs, and recommended configurations necessary to design, implement and deploy our security capabilities in partnership with internal and external partners
  • Assists with technical direction in designing and implementing security solutions for PSW technical infrastructure and business applications
  • Evaluates and implements security devices such as firewalls, IDS, IPS, threat correlation tools, vulnerability scanning and penetration testing tools, encryption capabilities
  • Conduct vulnerability assessment tests/penetration tests to identify any flaws in conjunction with Software Testing team and CTO.
  • Develops test plan and implements rigorous testing prior to rollout of new systems into the production environment
  • Correlate and tune network, system, and application devices for security events
  • Perform routine audits to ensure compliance with security policies
  • Research and evaluate the latest security products to combat the latest threats
  • Participates in developing long term strategies for conducting system penetration, vulnerability and web application testing, risk assessments, policy creation
  • Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities – where possible identify the persons responsible for security breaches within PSW
  • Schedule and oversee conduct of periodic security audits
  • Advise, where required, the participating government agencies of PSW in matters related to cyber security; and
  • Any other related duty assigned by the COO or CEO

Required Skill Set:

  • Knowledge and understanding of common information security management frameworks, such as ISO/IEC 27001, NIST, OWASP and other standards & practices
  • Networking concepts related to TCP/IP, switching and routing, microservices
  • Well versed with Linux and virtualization technology (VMWare)
  • Should have knowledge of application security with familiarity of tools for conducting web application vulnerability scanning and source code analysis
  • Understanding of security architecture definitions and its implementation
  • Hands-on experience of securing routes, DNS, DNS and Email security, VPN, DDOS mitigation technologies/tools and proxy services
  • Hands on with hardware and security software tools such as SIEM/SOAR, policies implementation on network and systems, identity, and access management, securing software development life cycle, DLP, Web Application Firewall (WAF), threat and risk management/mitigation etc.
  • Experienced in Firewall, IDS/IPS, sandboxes and other security tools and technologies – Fortinet, Huawei, Cisco
  • Must have conducted vulnerability assessments and penetration testing with subsequent security tightening
  • Experience with writing security policies and SOPs and IT audits will be a plus
  • Should be able to help in writing scope and technical evaluation of security products.

Job Details

Functional Area:
Total Positions:
1 Post
Job Shift:
First Shift (Day)
Job Type:
Job Location:
Gender:
No Preference
Age:
25 - 40 Years
Minimum Education:
Bachelors
Degree Title:
In a technology/engineering/Information Security related field required; and  A professional security management certification (CISSP/CEH or similar preferred)
Career Level:
Experienced Professional
Experience:
3 Years - 6 Years (Minimum 3 to 6 years of hands-on experience in Data & information security in a large enterprise environment)
Apply Before:
Apr 01, 2023
Posting Date:
Mar 17, 2023

Work Environment

Supervisor’s gender:
Either
Percentage of female coworkers:
20-29%

Pakistan Single Window

Information Technology · 101-200 employees - Karachi

Pakistan Single Window (PSW) is an ICT-based system in Pakistan providing a single window for trade. PSW is a facility that allows parties involved in trade and transport to lodge standardized information and documents at a single-entry point to fulfill all import, export, and transit-related regulatory requirements. If information is electronic, then individual data elements need to be submitted only once. PSW will connect relevant government departments with each other and with economic operators like importers, exporters, customs agents, shipping agents, transporters etc, in Pakistan for efficient management of cross border trade. It will provide the ease and transparency in achieving compliance with relevant regulatory requirements, through an on-line facility, that will intelligently handle the information for each transaction without the need to provide same information more than once or to physically visit such government departments. Pakistan has committed to implement various provisions of World Trade Organization’s (WTO) Trade Facilitation Agreement that includes implementation of a National Single Window (NSW) system before February, 2022. Pakistan also needs PSW implementation to overhaul management of its external trade for reducing time, cost and complexity involved to improve its position in various global rankings on competitiveness and ease of doing business. Guiding vision and mission objectives: VISION: Pakistan will establish a world-class automated hub by 2022, offering services and creating efficiencies, to reduce cross border trade related costs, time and complications for improved trade facilitation and compliance. MISSION: Improve cross-border trader processing by providing centralized ICT based services, simplified processes, effective and reliable automation, harmonized data exchange and risk-based selectivity in enforcement of government’s regulations.

What is your Competitive Advantage?

Get quick competitive analysis and professional insights about yourself
Talk to our expert team of counsellors to improve your CV!
Try Rozee Premium

Similar Job Titles

Officer IT Support

Imtiaz Super Market, Multiple Cities, Pakistan
Posted Jun 10, 2024
I found a job on Rozee!