Security Consultant
صاحب العمل نشط
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
شارك هذه الوظيفة
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
الوصف الوظيفي
Job Title: Security Consultant WAF Proxy DLP VAPT and Digital Security Assessment
Location: Dubai
Job Type: Contract
Reports to: Security Lead / Digital Security Manager
Job Summary:
We are seeking a skilled Security Consultant to lead and coordinate critical security assessments and projects bringing expertise in Web Application Firewalls (WAF) Proxies Data Loss Prevention (DLP) Vulnerability Assessment and Penetration Testing (VAPT) and internal security assessments for both web and mobile applications. The ideal candidate will collaborate closely with internal teams and stakeholders to ensure the security and compliance of our digital assets utilizing Forcepoint for Proxy and DLP and F5 for WAF.
Key Responsibilities:
1. WAF Implementation and Management
o Oversee the configuration and management of F5 Web Application Firewalls (WAF) to protect digital assets.
o Perform regular reviews and updates of WAF policies and rules based on evolving threats and application changes.
o Collaborate with development and IT teams to resolve false positives and optimize WAF performance.
2. Proxy Management
o Implement and manage Forcepoint Proxy to control and monitor web traffic.
o Regularly assess proxy configurations to ensure adherence to security policies and prevent unauthorized access.
o Collaborate with IT to troubleshoot proxyrelated issues and optimize performance.
3. Data Loss Prevention (DLP)
o Utilize Forcepoint DLP to implement data protection strategies and prevent data leaks.
o Conduct risk assessments to identify data loss vectors and implement controls.
o Develop data classification and handling guidelines with relevant departments.
4. Vulnerability Assessment and Penetration Testing (VAPT) Coordination
o Plan coordinate and conduct regular VAPT activities for web and mobile applications.
o Analyze findings from VAPT and provide actionable recommendations for risk mitigation.
o Engage thirdparty security vendors when necessary and ensure testing aligns with industry best practices.
5. Internal Security Assessments
o Conduct security assessments and audits on internal applications and systems especially in the digital domain.
o Develop assessment plans perform risk analysis and provide clear reporting on assessment results and remediation plans.
6. Compliance and Documentation
o Ensure compliance with industry standards regulations and internal policies.
o Document security processes incident responses and findings from assessments and tests.
o Maintain updated records of digital security protocols and practices.
7. Collaboration and Stakeholder Management
o Work with IT development legal and compliance teams to implement and monitor security controls.
o Serve as the primary point of contact for coordinating security assessments with stakeholders.
o Conduct training and awareness sessions on security best practices for relevant stakeholders.
Qualifications and Skills:
Educational Background: Bachelors degree in Computer Science Cybersecurity Information Technology or a related field. Relevant certifications (e.g. CEH OSCP) are preferred.
Experience:
o 5 years of experience in cybersecurity specifically in WAF Proxy DLP VAPT and security assessments for web and mobile applications.
o Proven track record in coordinating VAPT activities and managing thirdparty security vendors.
Technical Skills:
o Experience with Forcepoint Proxy and DLP F5 WAF and VAPT tools (e.g. Burp Suite OWASP ZAP).
o Familiarity with security standards and frameworks (e.g. OWASP ISO 27001 PCIDSS).
o Understanding of vulnerability scanning risk assessment methodologies and secure coding practices.
o Optional: Knowledge of DevSecOps practices and tools is a plus.
Soft Skills:
o Strong communication and coordination skills to work effectively across departments.
o Analytical mindset and problemsolving abilities.
o Ability to document findings and communicate in both technical and nontechnical terms.
Preferred Qualifications:
Certifications: CEH OSCP or other relevant security certifications.
Industry Experience: Prior experience in digital security assessment within financial retail or healthcare industries.
نوع التوظيف
دوام كامل
