Security Configuration Compliance Analyst

1 day ago

Muscat, Muscat, Oman TAT IT Technolgies Full time
We have an urgent requirement for Security Configuration Compliance Analyst - Banking domain experience is required for one of our banking client in Oman

Strong Experience of 7 years in system administration and configuration hardening of Enterprise Infrastructure Must to apply for this role

Strong Experience on operating system hardening, security baselines, and configuration best practices (e.g., CIS Benchmarks, STIG Must apply for this role

Strong experience in translating security policies and standards into technical configurations is Must to apply for this role

Strong experience on Application Infrastructure, Data Integrity and Security, Enterprise Database Systems and Network Security is MUST

Configuration Hardening Documents Development and Maintenance.
  • Develop, document, and maintain standardized Security hardening document across the IT infrastructure (e.g. OS, DB, middleware, Infrastructure applications)
  • Reference the documents to industry best practices (e.g. CIS, STIG, and vendor specific hardening controls) to ensure the full coverage of the technology hardening.
  • Ensure the documents accurately reflect organizational security policies and configuration baselines.
  • Ensure the developed documents are accompanied with custom automated scripts, tripwire templates or any form of automated checks.
  • Regularly review and update the hardening documents to incorporate new policies and industry best practices.
  • Implement version control and change management processes for configuration hardening documents.
  • Collaborate with policy owners to understand and interpret security policies and standards to perform necessary customization to hardening documents.

Systems Configuration Compliance Automation
  • Work closely with IT operations teams to implement and maintain Tripwire configurations for various operating systems, databases, middleware and applications.
  • Provide guidance and support to technical teams on the proper use and interpretation of Tripwire configuration templates.
  • Develop and maintain scripts (e.g. Python, PowerShell and Bash) to define custom rules

Regularly review tripwire templates and custom scripts to ensure consistency with the hardening documents.
  • Automate the deployment and management of custom Tripwire templates using scripting and regex.
  • Troubleshoot and debug custom scripts to ensure accurate and reliable configuration monitoring.
  • Translate policy requirements into specific scripts, Tripwire configuration rules and monitoring parameters.

Configuration Compliance Monitoring and Reporting
  • Utilize Tripwire or scripts to monitor and report on configuration compliance status across the organization.
  • Analyze Tripwire findings and identify systems that deviate from defined configuration baselines and policies.
  • Communicate effectively with technical and non-technical stakeholders regarding configuration compliance status and remediation efforts.
  • Generate regular and ad-hoc reports on configuration compliance posture for management and relevant stakeholders.
  • Identify and address discrepancies between Tripwire configurations and organizational policies and baselines

Continuous Improvement
  • Stay up-to-date on the latest security trends, best practices, CIS and STIG baseline updates and Tripwire product updates.
  • Identify opportunities to improve the efficiency and effectiveness of Tripwire configuration management processes.
  • Contribute to the development and refinement of configuration management policies and procedures.

Technical Expertise
  • Participate in technical discussions by explaining/demonstrating attacks and explain the recommended hardening controls to IT.
  • Collaborate with application developers, management and project management teams by reviewing and measuring the effectiveness of proposed security controls to be implemented before proceeding with the implementation.
  • Identify best practices and continuously propose improvements to technical processes, procedures and guidelines in alignment with the bank's standards.
  • Plan and manage the execution of hardening document reviews and systems configuration hardening reviews.

Skills: application infrastructure,regex,enterprise database systems,cis benchmarks,scripting,powershell,compliance,data integrity and security,python,configuration hardening,security,configuration best practices,configuration,network security,bash,stig,tripwire,system administration,operating system hardening,security baselines
#J-18808-Ljbffr

  • Security Configuration Specialist

    1 day ago

    Muscat, Muscat, Oman beBee Careers Full time

    We are seeking a seasoned Security Configuration Specialist to join our team. This role is crucial in ensuring the security and integrity of our infrastructure.The ideal candidate will have a strong background in system administration, configuration hardening, and security baselines. They will be responsible for developing and maintaining standardized...

  • Sr. Cybersecurity Assurance Analyst

    4 weeks ago

    Muscat, Muscat, Oman Oman Arab Bank Full time

    Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Oman Arab BankTalent Acquisition Specialist - Oman Arab Bank | CIPDProvide periodic and on-demand security assessment (VAPT) to IT infrastructures, systems, applications and websites.Perform Red Team activity to systems/applications.Logs all InfoSec related...

  • Network Security Architect

    2 weeks ago

    Muscat, Muscat, Oman beBee Careers Full time

    Job Summary:"," We are seeking a skilled L2 Network & Security Engineer to provide second-level support for network issues, troubleshoot complex problems, and maintain enterprise networks."," The ideal candidate will have strong knowledge of network protocols (TCP/IP, BGP, OSPF, VLANs, etc.) and hands-on experience with Fortinet, Cisco, and Huawei...

  • Network Security Specialist

    2 weeks ago

    Muscat, Muscat, Oman Manchi Group (a Tech Cloud solutions LLC) Full time

    Job Description – L2 EngineerJob Title: L2 Network & Security EngineerLocation: Muscat, OmanContract Type: 2-Year ContractJob Type: Full-Time / OnsiteDepartment: IT Infrastructure / Network & SecurityReporting to: Network & Security Lead / Infrastructure ManagerJob SummaryWe are hiring a skilled L2 Network & Security Engineer for a 2-year contractual...

  • Network and security infrastructure Specialist

    5 days ago

    Muscat, Muscat, Oman TAT IT Technolgies Full time

    We have an urgent requirement for Network and security infrastructure Specialist with strong experience on multi-data center environments for our banking client in OmanExperienc-6+ yearsLocation – OmanCertifications such as CCNA, CCNP, Fortinet NSE, CISSP, or similar are highly preferredStrong network and security infrastructure management in the banking...

  • Senior Analyst

    2 weeks ago

    Muscat, Muscat, Oman Omantel Full time

    Role PurposeTo analyze and interpret data from multiple sources to deliver actionable insights that support business decisions. This role ensures data quality, develops reports and dashboards, and collaborates with stakeholders to address key data needs while maintaining data privacy and integrity.Position InformationTitle : Senior Analyst, SME SalesUnit:...

  • Security Consultant

    4 weeks ago

    Muscat, Muscat, Oman Yuvo Full time

    Lead the design, implementation, and support of advanced Cisco security solutions.Provide expert-level consulting on Cisco FTD, FMC, and ISE deployments, configurations, and troubleshooting.Develop automation scripts using Python to enhance security operations and optimize security workflows.Act as a trusted advisor to customers, ensuring best practices in...

  • Cybersecurity Analyst SOC L1

    4 weeks ago

    Muscat, Muscat, Oman Abtikar Graduate Employability Full time

    Get AI-powered advice on this job and access more exclusive features.Direct message the job poster from Abtikar Graduate Employability.Securado LLC Oman is the premier cybersecurity consultancy firm in the sultanate.Role DescriptionThis is an internship role for a Cybersecurity Analyst SOC L1 at Securado SOC in Muscat, Oman. The role involves day-to-day...

  • Revenue Analyst

    1 day ago

    Muscat, Muscat, Oman Shangri-La Group Full time

    Shangri-La Barr Al Jissah Resort & SpaMuscat, Sultanate of OmanNestled in between the dramatic backdrop of rugged mountains and the pristine waters of the Sea of Oman, Shangri-La's Barr Al Jissah Resort and Spa is set on 124 acres of stunning scenery and home to three spectacular hotels: the family orientated Al Waha comprises 262 rooms, the diverse Al...

  • CCIE Security Engineer

    3 weeks ago

    Muscat, Muscat, Oman Uplift People Consulting Full time

    About UpliftUplift is a dynamic agency specializing in global talent search, covering EMEA, LATAM, USA, and APAC. With successful placements in 52 countries, we combine speed and cutting-edge technology to source top executive and mid-senior talent across various functions. Our innovative approach integrates global networks, AI, and advanced recruitment...