Job Objectives:
To maintain and secure IS/IT systems ensuring their maximum availability, integrity, reliability, and confidentiality in order to deliver and support secure & cost-effective infrastructure for client/server services. Qatalum systems are based on the latest Microsoft technologies and products. Qatalum also consists of software and hardware from popular vendors including but not limited to F5, Symantec, VMWare, Veeam, HP, Cisco, and others
Job Description:
- Maintain and harden Server operating systems, including Windows and Linux.
- Maintain and harden infrastructure services, including but not limited to, Active Directory, DNS, DHCP, Endpoint Security, Application whitelisting, Email, File, Print, KMS, RMS, PKI, IDAM, PAM, M365 solutions, Enterprise archiving, VPN, Remote connectivity, and MS System Center Suite.
- Maintain and harden hyperconverged infrastructure and virtualization platforms
- Maintain and harden backup and recovery solutions.
- Work in close coordination with the network team to support network security controls including but not limited to, NextGen firewalls, web application firewall, network sandbox, and IPS technology in line with Qatalum’s security architecture, guidelines, and compliance requirements.
- Responsible for timely remediation of reported and assigned vulnerabilities ensuring adherence to change management process and remediation timelines to reduce threat footprint and comply with department KPIs.
- Plan, conduct and report periodic preventive maintenance, upgrades, threat intelligence updates, patching and health checks of the infrastructure security controls to ensure maximum performance, security, and availability.
- Ensure proactive monitoring for availability, fault, and capacity management to ensure scalability and plan for resource/license availability to meet business demands.
- Participate in business continuity and DR design, implementation and test activities, continuous improvement of DR plans, define and maintain BC/DR SOPs, execution of DR plan during declared state of emergency to ensure business resilience within SLA.
- Responsible to liaise with SOC to ensure proper and effective integration of security controls for continuous security and event monitoring and to support escalated incidents.
- Provide 2nd level of support for all major information security incident response, management and investigation in corporate network, cloud infrastructure, data center, and plant wide computer rooms.
- Recommends improvements to the secure reference architecture through continuous review and assessment of the IT and OT infrastructure security requirements, policies and procedures based on secure practices, compliance, and business needs.
- Perform follow up, close and report information security regulatory requirements, audits, inconformity reports, compliance issues and observations that arise during internal and external assurance engagements.
- Perform any other related duties or assignments as directed.
- Active member of the 24*7 IT standby/on-call to provide support in order to ensure maximum availability, reliability and security.
The above statements are intended to describe the general nature and level of the work to be performed. This is not an exhaustive list of all duties and responsibilities. Qatalum’s Management reserves the right to amend and change responsibilities to meet business and organizational needs as necessary.
Minimum Qualification Required
- Bachelor's degree in an IT related discipline
Required experience
- 7+ years' experience in a similar role handling large IT and OT infrastructures
Job Specific Skills
- Certifications in Infrastructure and Security Domains
- Experienced with (or equivalent) the following regulations & frameworks: PCI, ITIL and ISOIIEC 2700x
- Hands on experience in infrastructure and security systems, including Microsoft Operating systems and products, Cloud technologies, VMware, HCI, anti-virus software, backup systems, Application delivery managers, etc.
- Experience with systems, security, and network monitoring tools
- Thorough understanding of the latest security principles, techniques, and protocols.
- Experienced with Automation and digitalization techniques to deploy and support efficient services.
- Intermediate Knowledge of: Network technologies and Database Administration
- Problem solving skills and ability to work under pressure
- Understanding of Regulatory Compliance, Risk Management, Privacy
- Understanding of current and emerging technologies
- Fluent written and spoken English
