Engineer (Security) - Service Delivery

Job Description

Entity: Aga Khan UniversityLocation: Karachi.Introduction to the Aga Khan University:Chartered in 1983, Aga Khan University (AKU) is a private, autonomous and self-governing international university with 13 teaching sites in 6 countries distributed across three continents. As an integral part of the Aga Khan Development Network, AKU provides higher education in several disciplines, carries out research pertinent to the countries in which it exists and has campuses, programs and/or teaching hospitals in Afghanistan, Kenya, Pakistan, Tanzania, Uganda and the UK. As an international institution, AKU operates on the core principles of quality, relevance, impact and access; and AKU is a model of academic excellence and an agent of social change.Job Role/Responsibilities:You will be responsible for managing global information security and to protect AKU?s enterprise infrastructure, information and business continuity globally through strong and effective security practices. You would also need to ensure that adequate and effective security processes and controls are followed and aligned to deliver compliance with security policy and regulatory requirements of each region.Specifically, you will be responsible for:

• conducting routine security reviews of networks, infrastructure, identifying gaps, report issues to concerned units and management and tracking for timely closure
• 24/7 monitoring of the entire global ICT infrastructure through Security Operations Center (SOC)
• coordinating and ensuring timely mitigation of all the tickets assigned by managed SOC services
• coordinating with cross functional internal and external teams to perform mitigation of identified security issues timely
• evaluating and recommending new security technologies and counter measures against threats to information or privacy globally
• coordinating with IT and business on security concerns for network, infrastructure and various projects
• conducting internal and external vulnerability assessments and penetration tests on a regular basis
• managing and driving remediation efforts related to security incidents, vulnerability assessments and penetration tests for all campuses
• ensuring implementation of Security Incident and Threat Response processÿ
• identifying/recommending tools, processes, software, and hardware to improve or replacing current security infrastructure practices, services, or technologies used globally to meet future requirements
• ensuring that appropriate measures have been taken to protect all AKU digital information assets from all kinds of malicious software. For example, malware, viruses, worms, Trojans, etc.
• conducting information security risk assessments for all new products/deployments (networks, infrastructure, firewalls etc.)
• actively participating in the Security Incident Response Team (SIRT)
• identifying security weaknesses and/or gaps in the current IT infrastructure and operations and work with other teams to bring information security operations up to standards AKU wide
• understanding the business activities performed by AKU, and suggests appropriate information security solutions that adequately protect these activities AKU- wide.

• participated in the implementation of Information Security program in a large-scale environment
• strong hands-on experience on Microsoft Windows Servers (2008/2012/2016/2019), client OS (Windows 7/Windows 10), CentOS & Red Hat, Active Directory, DNS, Windows Defender, Azure, etc.
• experience in at least one of the SIEM solutions like IBM QRadar, Microsoft Azure Sentinel, Splunk, LogRhythm, etc.
• in-depth knowledge of security issues inherent in corporate environments e.g.ÿ phishing, DDoS attacks Malware, Ransomware, etc.
• experience with EDR, XDR, Network switches and next generation firewall
• expert level knowledge in the security and vulnerability assessment and remediation/hardening of server and client operating systems and applications (Active Directory, DNS, exchange Server, IIS/web services, etc.)
• ability to pick up technical concepts quickly and can learn new skills and knowledge
• experience in analyzing malware, identifying Indicators of Compromise (IOC) and TTPs of various threat actors through the analysis of email, malware, endpoint, network, etc.
• the ability to work in rotational shifts to cover 24/7/365 SOC operations
• technical, managerial, analytical, interpersonal and organization skills
• the ability to communicate in an understandable, polite and friendly manner, both written and verbal
• experience working within large and complex technical environments
• the ability to work well with others, as well as independently
• strong organizational skills and ability to multi-task in a business environment
• the ability to establish and maintain effective relationships with co-workers and customers to gain their trust and respect
• ability to professionally deal with difficult people or situations

Keyskills :