• At least University degree in engineering/ science, IT/IS, computer applications or related field.
• At least 5 years of experience with at least 2-3 years’ experience in cyber/ information security, assessment or monitoring.
• Should have ability to critically analyze root cause of information security lapse and system failure, proactively monitor and recommend necessary security controls and coordinate for  its implementation.
• Should have sound knowledge and understanding on the requirements of ISO 27001 and PCIDSS security standard, including its implementation and maintenance. Past experience in implementation of ISO 27001 and/or PCI DSS will be advantage.
• Ability to execute and monitor IS assessment/ VAPT/ Audits to support and deliver security initiatives including usage of various assessment tools.
• Should have sound knowledge on TCP/IP network traffic and event log analysis from variety of sources including individual host logs, network traffic logs, firewall logs, web logs, or intrusion prevention logs. Experience with packet analysis (Wireshark) and Malware analysis.
• Experience in administration of Security Information Event Management (SIEM) tools and creation of co-relation rules, incident response and malware/advanced threat protection.
• Working knowledge of diverse operating systems, networking protocols, systems administration and security technologies
• Ability to contribute in the development and implementation of security architecture and design of various systems, infrastructure and products.
• Ability to learn, understand and apply new technologies with strong interpersonal and communication skills. Ability to effectively prioritize and execute tasks in high-pressure environment is crucial. 

Source: NCHL