Share this Job

Network Security Engineer

Date: 01-Feb-2019

Location: Singapore, Singapore

Company: Panalpina

Req ID: 156456
Job Function: IT
Full-Time/Part-Time: Full-time
Contract Type: Permanent
Job Level: Professional
Purpose of the position

* Main responsible and single point of contact for all security related services, tools and controls on the networks

* Actively support the team to implement security services/tools, setup hardening and deploy solutions for vulnerabilities remediation

* Actively support internal and external audits

* Ensure regular Backup and Recovery tests (incl. protocols) according to defined SLAs

* Ensure central oversight including security monitoring

Key Tasks

* Network Solution Architecture and solution blueprint design and definition.

* Manage security solutions, services and tools that are implemented on the networks

* Ensure patch management process is implemented; consistently and timely managed on the networks

* Perform in-depth analysis of current network security capabilities and provide insights and improvements on any findings that may arise.

* Review and plan for implementing security capabilities on current and future firewall including other network devices for e.g. hardening, Application Control, AMP, WAF etc.

* Support definition, implementation and regular update of the network configuration

* Perform periodic review of firewall rulesets to ensure that suspicious traffic is kept out.

* Operational support during security incidents where specialist knowledge is required.

* Follow up on incidents and alerts related to network components

* Ensure regular reporting and monitoring of security events and security status of the networks

* Assisting and advising management as necessary with tasks including requirements management, roadmap and service definition etc.

* Evaluate new Security services/technologies (HW, Software, services, …)

* Conduct RFP for security services/technologies

* Ensure any security exceptions are reviewed and tracked on periodic basis.

* Assist in implementing new solutions/products as a subject matter expert in network security technology area

* Support identity and access management (IAM) processes are consistently implemented and followed. Manage network access and authorization for internal and external staff (onsite and remote). Define/review setup, processes, auditing, housekeeping and reports

* Ensure consistent and timely remediation of the reported vulnerabilities on the networks

* Act as an interface with Regional and other IT functions

* Support creation of the relevant IT management processes (e.g. patch management, antivirus management, IAM, applicable security baselines/guidelines/work instructions)

* Manage or support security related projects in the area of responsibility

* Keep up to date with latest security and vulnerability information

* Develop and maintain the IT business continuity plan and the disaster recovery plans

* Manage physical assets lifecycle for network components: delivery and decommissioning (e.g. router, switches, etc). Define processes and control reports.

* Perform assigned tasks to support Panalpina meets its objectives and targets regarding quality, health, safety and environment as documented in IMS and follow all requirements as set out in the QHSE policy.

* It is the responsibility of all staff to ensure that their day to day activities embrace sustainability/Health and safety therefore reducing the impact upon the environment, supporting the communities we work in and reducing incidents in the workplace.

* Provide required/agreed security reports

Function / Market & Industry Knowledge

* Knowledge of information security management frameworks, such as ISO/IEC 27001, COBIT and NIST

* Strong background in one or more security technologies and a good awareness of the range of available security solutions

* Experience in analyzing the security of systems (penetration testing, Web Application security testing, vulnerability scanning, threat modeling, etc.)

* Knowledge and experience in developing and implementing information security guidelines and processes

* Deep technical configuration knowledge of Unix, Linux

* Deep technical configuration knowledge of the following technologies: internet proxy appliances, load balancers, security firewalls, IPSEC, IPS/IDS, SIEM

* Knowledge of Wireless systems, WAN technologies/protocols, IPAM, DNS, DHCP

* Good knowledge in Datacenter setup, business continuity and disaster recovery

* Good knowledge in scripting and asset management

* Good knowledge in project management and service management

* Good knowledge in documentation & presentation

Skills & Competencies

* Ability to coordinate efforts/resources within and across boundaries to deliver goals

* Ability to work with different cultures and to manage cross functional interfaces

* High priority for teamwork

* Good team player

* Ability to communicate openly, clearly and concisely

* Capable to build strong and long-term team relationships within and across functions and geographical boundaries and based on ethics and trust

* Ready to take personal accountability for achieving individual and shared goals

* Ability to set robust plans well in advance and to initiate action to move projects forward

* Planning & Organizing (Ability to prioritize, plan, assign & control)

* Time management (monitoring performance against deadlines and milestones)

* Integrity

* Act as a Role Model for Corporate Values and fully adhere to the Code of Conduct

* High energy and resilience

* High commitment and positive attitude in the face of setbacks and obstacles

* High stress level (Ability to work under pressure and deal with tight deadlines)

* Be authentic, approachable, open and honest

* Willingness to learn and constantly self-develop in the area of Information Security

Educational background / Work experience

* Bachelor’s degree in Computer Science or equivalent work experience

* A professional information security certification, such as CISM, CISSP, CISA, CRISC or other – is preferred

* Hands-on experience in one or more areas: secure web application development, penetration testing, secure systems administration – is preferred

* Service management experience of min 3 years in cyber security protection tools (on networks)

* ITIL v3 certification – is preferred

Language Skills

* English: fluent written and spoken