Collaborate with the Information Security Officer (ISO) to implement and maintain network security controls in adherence to ISO 27001 standards.
Conduct regular assessments and audits of network infrastructure to identify vulnerabilities and ensure compliance with security policies.
Design, implement, and manage security measures such as firewalls, intrusion detection/prevention systems, VPNs, and other network security technologies.
Participate actively in ISO 27001 audits, providing expertise in network security controls and assisting in the preparation of audit documentation.
Develop and maintain network security policies, procedures, and guidelines in alignment with ISO 27001 requirements.
Monitor and respond to security incidents, conduct forensic investigations, and implement corrective actions.
Collaborate with cross-functional teams to ensure that security controls are integrated into the overall information security framework.
Stay abreast of emerging threats, vulnerabilities, and industry best practices in network security.
Provide guidance and training to IT teams and end-users on security best practices.
Qualifications:
Bachelor's degree in Information Technology, Computer Science, or a related field (preferred) or equivalent experience.
Proven experience as a Network Security Engineer with specific experience in ISO 27001 compliance.
In-depth knowledge of network security protocols, technologies, and best practices.
Hands-on experience with security appliances, firewalls, intrusion detection/prevention systems, and VPN technologies.
Familiarity with ISO 27001 standards and experience in implementing controls in line with these standards.
Strong understanding of risk assessment methodologies and their application in network security.
Certifications such as CISSP, CISM, or CCNP Security are highly desirable.