ARENGY is an IT-Digital and Engineering Consulting Company operating in the Middle East from Dubai. Our customers are the most successful industry leaders executing projects around the globe. We are partnering with one of the leading System Company in Dubai. We are looking for a Cyber Assurance Specialist
Job Description
As Cyber Assurance Specialist, you will provide subject matter expertise in enhancing cyber assurance and security controls across the organization. The role will continuously analyze, assess, prioritize, and recommend remediation strategies for non-compliance to security control enforcement and set business objectives / KPIs. The specialist will play a crucial role in daily assessment briefings and drive remediation actions across various business units, utilizing their expertise in cybersecurity and data science.
Your responsibilities:
• Ensure cyber assurance of existing ServiceNow asset management, Qualys vulnerability management API tooling, processes, and capabilities.
• Discover and analyze the impact of vulnerabilities in business-critical systems.
• Continuously improve processes for use across multiple detection sets for more efficient operations.
• Maintain and employ a strong understanding of advanced threats, continuous vulnerability assessment, response, and mitigation strategies used in cybersecurity operations.
• Enhance continuous infrastructure vulnerability assessment and configuration compliance programs across on-prem and cloud environments.
• Provide technical expertise and support in the design, development, and monitoring of security architecture for enterprise infrastructure.
• Analyze various threat and vulnerability feeds, security tools, and intelligence sources to assess security risks and prioritize remediation efforts for greatest impact.
• Run various assessment tools to obtain insights on security posture and create reports for management and global IT stakeholders.
• Lead ongoing system administration responsibilities for core vulnerability management systems, support discovery and inventory of assets for vulnerability scans, and provide vulnerability remediation consultation to global teams to support enterprise risk reduction efforts.
• Use attack surface modeling tools and techniques to identify vulnerabilities in the overall attack surface of the organization and propose remediation actions as required.
Required qualifications
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, covert channel, replay attacks, malicious code).
• Knowledge of which system files (e.g., log files, registry files, and configuration files) contain relevant information and where to find those system files.
• Experience with ServiceNow, Qualys and CrowdStrike (API level)
• Experience with Microsoft VS Code using Python
• Advance machine learning and data modeling techniques using Python