– 100% subsidiary of Crédit Agricole Leasing and Factoring, a French entity of the leading global banking group: LE CREDIT AGRICOLE.
– It is a well established company (more than 10 years) and stable in Mauritius.
– Real opportunity for career development
– Attractive salaries for motivated and efficient employees.
Candidate should have a strong technical background as Network & Security Engineer with significant design, support, administration and implementation experience of network & security project in line with the company security strategy and budget. Incumbent will also need participate in working groups for enforcing the IT security policy and comply with requirements of external security audits and recommendations. A description of the main duties is given below:
Conceptualise, design network architecture and develop detailed cyber security designs, test and implement network solutions to pre-defined group’s specifications and recommendation with minimum disruption to the business by using test environments.
Plan, configure, deploy, implement and maintain organization’s Core, LAN, WAN and wireless networks infrastructure, IP and routing summarization which include routers, switches, firewalls, telephony, access point, ISP connections (MPLS, IP-VPN, Lease line, SHDSL, IPLC, ADSL…) to maximise network & security efficiency and to comply with group standard and recommendations.
Implement and maintain IT security infrastructure with solutions such as EDR, NDR, anti-virus, anti-malware/ransomware solutions and intrusion detection/prevention systems, failover solutions.
Responsible for proof-of-concept (POC) network solution design and the development of appropriate test case processes. Perform feasibility studies to compare different technologies and solutions to fulfill Group security requirements. Assist with the procurement of network equipment and in managing subcontractors involved with network installation. Create and maintain detailed Visio diagrams in support of network hardware deployments.
Actively protect information technology assets and infrastructure from external or internal threats by carrying out vulnerability assessment on IT devices and networks to ensure that it complies with statutory and regulatory requirements regarding information access, security and privacy. Draft plan of action in terms of remediation actions.
Participate in the administration and maintenance of the network monitoring and management systems, including configuration management and network health checks. Contribute on major Incident conference bridges to help with troubleshooting to resolution.
Design, plan, configure, deploy, implement and maintain site-to-site VPN tunnels, point-to-site VPN with multifactor authentication to provide secure connectivity and access to company and group’s data centers.
Perform documentation and process enhancement that abide to principles of good network change management to provide direction for reducing unplanned network outages due to failed changes. Use of automation and tools to streamline change management. Perform a written transition documents and procedures for the network team when new systems and hardware are being deployed. Plan, schedule and communicate changes.
Devise, document and maintain the information security/domain policies, architectures and access controls on network resources as per standards. Maintain baseline security configurations networking equipment. Assist with the integration of information security requirements into organizational processes.
Identify network, system vulnerabilities and network assaults by reviewing firewall/IDS/IPS logs. Arrange scheduled upgrades of network equipment to the latest firmware releases as per standards for infrastructure configuration and change management.
Analyze, design, configure, implement, document and operate the SIEM tool with associated appliances. Act as the lead for the configuration management and maintenance for Network Detection Response (NDR) and Security Information and Event Management (SIEM) tools.
Provide support to SOC Analyst personnel using the SIEM to respond to security incidents and events. Lead technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection.
Define and perform routine maintenance of the network disaster recovery plan with regular review to keep the corporate standard requirements in term of SLA. Perform backup including replication and restore drills. Plan and conduct periodic network disaster recovery test to ensure network integrity and resilience.
Assist in the creation of queries, dashboards, and visualizations to support reporting requirements and monitoring of the SIEM software deployment
Assist with the enforcement of policies and standards compliance and analysis of the effectiveness of information security controls.
Provide assistance during the information security awareness training to ensure that employees are proficient with up-to-date IT security best practices.
Assist in risk analysis assessment and make recommendations to increase the level of security and resilience of our LAN and WAN environment by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.
Analyze and implement solutions that take into consideration all the complexities and challenges involved. Records configuration release on the network and performs simulations, test network implementation prior to “live” changes following proper change management.
Develop and maintain Standard Operating Procedures and other proper documentations for the network, information system environment and other IT procedures.
Conduct internal control testing as required by the CISO or Audit team for the periodical control report and liaise with employees to resolve any issues. Review the design and periodically test and update the internal controls.
Perform routine network startup and shutdown procedures, and maintain control records. Monitor network to ensure network availability to all system users and perform necessary maintenance to support network availability.
Provide user support, log and resolve issues within required turnaround times. Follows-up and ensures proper documentation after each support. Ensure that the network is working optimally.
Performs audit and controls on IT and security systems ensuring that patches or updates are done correctly and make proper documentation. Ensure that the escalation process and response team knows as much as possible, as quickly as possible about security incidents.
Ensure follow up of IT operation management procedures including data security and backup procedures. Perform routine maintenance and backup on servers including backup/restore drills.
Evaluate new technologies (software and hardware) to improve network services, reliability, resilience, and performance and make recommendations.
Coordinate IT Security project management, engineering, maintenance, QA, and risk management. Assist the manager in ensuring that the IT Infrastructure meets the business requirements such as assisting in the planning and development of improved service. Participate in the process risks analysis in compliance with contract management processes.
To assist in the development of the information security program such as ISO 27001, NIST or other security standards across the organisation by identifying resources needed and collaborating with administrative staff to ensure proper development and management of the information security program/governance structure as per standards and in compliance/alignment with corporate security rules/objectives and to ensure that departments have fulfilled their information security responsibilities.
Assist the manager in ensuring that the set IT security standards meets the business requirements. Stay current with network and infrastructure technologies through various methods
Participate in Crisis Units driven by multiple stakeholders to resolve major issues that would be highly impacting for the business. Actively participate in Incident Management calls with the Group to remediate downtime of applications services to the end-users.
Assess phishing attacks and awareness campaigns for the organization. Assist the Group CERT for investigations.
Propose cost-effective alternatives to be implemented as per the organisation’s requirements. Implement and assess Open-Source solutions to optimize the cost of the implementations.
Assist the periodic Security Awareness presentation and digital communications to keep the users well aware of cyber-threats.
Comply with company processes and internal and Group procedures
Be proactive in improving the ‘processes’ and procedures of GSA Ltd
Report to his manager any malfunction
Live the values of the Group
Perform any other cognate duties as requested by management.
Degree or Master in ICT / Computer Science Engineering / IT Security or equivalent
Current CCNP/NSE4 or NSE7, SPLUNK certificate level preferred
Knowledge and hands-on experience with firewalls: Cisco ASA, Juniper, Fortinet and Peplink
Extensive hands-on experience and knowledge with a variety of routing protocols and network concepts including MPLS, BGP, HSRP, STP, RIP, OSPF, VLANs design, VTP, GRE / IPSec and inter-vlan routing on Layer-3 switches will be a definite advantage
Strong knowledge and experience with configuring QoS, ACL, load balancer and traffic shaping.
Experience in system, network, IT security/SOC development, deployment, and support
Understanding of network and endpoint security tools and how they integrate into the SIEM and provide a cohesive view of network incidents and security.
Experience with managing SPLUNK indexes and applications, knowledge objects such as widget, dashboards, saved and scheduled searches and alerts.
Knowledge of ADC and load-balancer such as BIP-IP F5, Citrix and FortiADC would be a plus.
ISO 27001 / ISAE-3402, CEH, ECSA, CISM, CISSP or other relevant IT/Security Certification will be an advantage.
Knowledge in authentication and encryption certificate management.
VDI Platform and XenApp infrastructure knowledge would be an advantage.
Experience in disaster recovery infrastructure and experience with VoIP technologies will be an advantage.
Minimum 3 years’ working experience in a similar position including IP Networks, multipoint WAN connectivity.
Knowledge, Skills and Attributes:
Solid knowledge of TCP/IP, VPN, DHCP, DNS, Routing, Switching NAT, network security and firewall concepts is mandatory
Knowledge of Security Software/Framework, risk assessment tools, technologies and methods
Systematic approach to documentation and reporting and adherence to procedures and policies
Excellent analytical and troubleshooting skills with “can do” attitude to build on and improve the network & security infrastructure and effectiveness within the department
Initiative - Manages work activities according to the changing priorities of the organisation
Commitment and Collaboration - Consults colleagues, users and other stakeholders and acts accordingly in response to their concerns
Analysis and innovation - Has the ability to step back and review the approach
Good planning, organisation skills and good analytical skills
Ability to follow standard change management processes. Document and evaluate impact of required changes to the various networked systems. Plan, schedule and communicate changes to be implemented.
Ability to prioritise, schedule workload and to multi-task
Ability to work under pressure and during odd hours to meet deadlines
Solid teamwork and interpersonal skills.
Result orientated and active team player with leadership qualities.
- Attractive salary package
- Medical insurance
- bi-annual performance bonus
- Work from Home in rotary mode
- Morning transport facility
- Fixed French working hours: 10h00-19h00/11h00-20h00 with Week End off