GSA PROFILE

– 100% subsidiary of Crédit Agricole Leasing and Factoring, a French entity of the leading global banking group: LE CREDIT AGRICOLE.

– It is a well established company (more than 10 years) and stable in Mauritius.

– Real opportunity for career development

– Attractive salaries for motivated and efficient employees.

Candidate should have a strong technical background as Network & Security Engineer with significant design, support, administration and implementation experience of network & security project in line with the company security strategy and budget. Incumbent will also need participate in working groups for enforcing the IT security policy and comply with requirements of external security audits and recommendations. A description of the main duties is given below:

Conceptualise, design network architecture and  develop  detailed  cyber  security  designs,  test  and  implement network solutions to pre-defined group’s specifications and recommendation with minimum disruption to the business by using test environments.
Plan, configure, deploy, implement and  maintain  organization’s Core, LAN, WAN and wireless networks infrastructure, IP and routing summarization which  include  routers,  switches,  firewalls,  telephony, access point, ISP connections (MPLS, IP-VPN, Lease line, SHDSL, IPLC, ADSL…) to maximise network & security efficiency and to comply with group standard and recommendations.
Implement and maintain IT security infrastructure with solutions such as EDR, NDR, anti-virus, anti-malware/ransomware solutions and intrusion detection/prevention systems, failover solutions.
Responsible for proof-of-concept (POC) network solution design and the development of appropriate test case processes. Perform feasibility studies to compare different technologies and solutions to fulfill Group security requirements. Assist with the procurement of network equipment and in managing subcontractors involved with network installation. Create and maintain detailed Visio diagrams in support of network hardware deployments.
Actively protect information technology assets and infrastructure from external or internal threats by carrying out vulnerability assessment on IT devices and networks to ensure that it complies with statutory and regulatory requirements regarding information access, security and privacy. Draft plan of action in terms of remediation actions.
Participate in the administration and maintenance of the network monitoring and management systems, including configuration management and network health checks. Contribute on major Incident conference bridges to help with troubleshooting to resolution.
Design,  plan,  configure,  deploy,  implement  and  maintain  site-to-site VPN tunnels, point-to-site VPN with multifactor authentication to provide secure connectivity and access to company and group’s data centers.
Perform documentation and process enhancement that abide to principles of good network change management to provide direction for reducing unplanned network outages due to failed changes. Use of automation and tools to streamline change management. Perform a written transition documents and procedures for the network team when new systems and hardware are being deployed. Plan, schedule and communicate changes.
Devise,  document  and  maintain  the  information  security/domain  policies,  architectures  and access  controls  on  network resources  as  per  standards. Maintain baseline  security  configurations  networking  equipment. Assist with the integration of information security requirements into organizational processes.
Identify network, system vulnerabilities and network assaults by reviewing firewall/IDS/IPS logs.  Arrange scheduled upgrades of network equipment to the latest firmware releases as per standards for infrastructure configuration and change management.
Analyze, design, configure, implement, document and operate the SIEM tool with associated appliances. Act as the lead for the configuration management and maintenance for Network Detection Response (NDR) and Security Information and Event Management (SIEM) tools.
Provide support to SOC Analyst personnel using the SIEM to respond to security incidents and events. Lead technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection.
Define and  perform  routine  maintenance  of  the  network  disaster  recovery  plan  with  regular review to keep the corporate standard requirements in term of SLA. Perform backup including replication and restore drills. Plan and conduct periodic network disaster recovery test to ensure network integrity and resilience.
Assist in the creation of queries, dashboards, and visualizations to support reporting requirements and monitoring of the SIEM software deployment
Assist with the enforcement of policies and standards compliance and analysis of the effectiveness of information security controls.
Provide assistance during the information  security  awareness  training  to ensure  that  employees  are proficient with up-to-date IT security best practices.
Assist in risk analysis assessment and make recommendations to increase the level of security and resilience of our LAN and WAN environment by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.
Analyze  and  implement  solutions  that  take  into  consideration  all  the  complexities  and challenges involved. Records configuration release on the network and performs simulations, test network implementation prior to “live” changes following proper change management.
Develop and maintain Standard Operating Procedures and other proper documentations for the network, information system environment and other IT procedures.
Conduct internal control testing as required by the CISO or Audit team for the periodical control report and liaise with employees to resolve any issues. Review the design and periodically test and update the internal controls.
Perform  routine  network  startup  and  shutdown  procedures,  and  maintain  control  records. Monitor  network  to  ensure  network  availability  to  all  system  users  and  perform  necessary maintenance to support network availability.
Provide user support, log and resolve issues within required turnaround times. Follows-up and ensures proper documentation after each support. Ensure that the network is working optimally.
Performs audit and controls on IT and security systems ensuring that patches or updates are done correctly and make proper documentation.  Ensure that  the  escalation  process  and response team knows as much as possible, as quickly as possible about security incidents.
Ensure follow up of IT operation management procedures including data security and backup procedures. Perform routine maintenance and backup on servers including backup/restore drills.
Evaluate  new  technologies  (software  and  hardware)  to  improve  network  services,  reliability, resilience, and performance and make recommendations.
Coordinate IT Security project management, engineering, maintenance, QA, and risk management. Assist the manager in ensuring that the IT Infrastructure meets the business requirements such as assisting in the planning and development of improved service. Participate in the process risks analysis in compliance with contract management processes.
To  assist in the development of  the  information  security  program  such  as  ISO  27001, NIST  or  other  security  standards across the organisation by identifying  resources  needed  and  collaborating with administrative staff to ensure proper development and management of the information security  program/governance  structure  as  per  standards  and  in  compliance/alignment  with  corporate security rules/objectives and to ensure that departments have fulfilled their information security responsibilities.
Assist the manager in ensuring that the set IT security standards meets the business requirements. Stay current with network and infrastructure technologies through various methods
Participate in Crisis Units driven by multiple stakeholders to resolve major issues that would be highly impacting for the business. Actively participate in Incident Management calls with the Group to remediate downtime of applications services to the end-users.
Assess phishing attacks and awareness campaigns for the organization. Assist the Group CERT for investigations.
Propose cost-effective alternatives to be implemented as per the organisation’s requirements. Implement and assess Open-Source solutions to optimize the cost of the implementations.
Assist the periodic Security Awareness presentation and digital communications to keep the users well aware of cyber-threats.
Comply with company processes and internal and Group procedures
Be proactive in improving the ‘processes’ and procedures of GSA Ltd
Report to his manager any malfunction
Live the values of the Group
Perform any other cognate duties as requested by management.

Profile:

Degree or Master in ICT / Computer Science Engineering / IT Security or equivalent
Current CCNP/NSE4 or NSE7, SPLUNK certificate level preferred
Knowledge and hands-on experience with firewalls: Cisco ASA, Juniper, Fortinet and Peplink
Extensive hands-on experience and knowledge with a variety of routing protocols and network concepts including MPLS, BGP, HSRP, STP, RIP, OSPF, VLANs design, VTP, GRE / IPSec and inter-vlan routing on Layer-3 switches will be a definite advantage
Strong knowledge and experience with configuring QoS, ACL, load balancer and traffic shaping.
Experience in system, network, IT security/SOC development, deployment, and support
Understanding of network and endpoint security tools and how they integrate into the SIEM and provide a cohesive view of network incidents and security.
Experience with managing SPLUNK indexes and applications, knowledge objects such as widget, dashboards, saved and scheduled searches and alerts.
Knowledge of ADC and load-balancer such as BIP-IP F5, Citrix and FortiADC would be a plus.
ISO 27001 / ISAE-3402, CEH, ECSA, CISM, CISSP or other relevant IT/Security Certification will be an advantage.
Knowledge in authentication and encryption certificate management.
VDI Platform and XenApp infrastructure knowledge would be an advantage.
Experience in disaster recovery infrastructure and experience with VoIP technologies will be an advantage.
Minimum 3 years’ working experience in a similar position including IP Networks, multipoint WAN connectivity.
Knowledge, Skills and Attributes:

 

Solid knowledge of TCP/IP, VPN, DHCP, DNS, Routing, Switching NAT, network security and firewall concepts is mandatory
Knowledge of Security Software/Framework, risk assessment tools, technologies and methods
Systematic approach to documentation and reporting and adherence to procedures and policies
Excellent analytical and troubleshooting skills with “can do” attitude to build on and improve the network & security infrastructure and effectiveness within the department
Initiative - Manages work activities according to the changing priorities of the organisation
Commitment and Collaboration - Consults colleagues, users and other stakeholders and acts accordingly in response to their concerns
Analysis  and innovation - Has the ability to step back and review the approach
Good planning, organisation skills and good analytical skills
Ability to follow standard change management processes. Document and evaluate impact of required changes to the various networked systems. Plan, schedule and communicate changes to be implemented.
Ability to prioritise, schedule workload and to multi-task
Ability to work under pressure and during odd hours to meet deadlines
Solid teamwork and interpersonal skills.
Result orientated and active team player with leadership qualities.

Advantages:

ADVANTAGES

- Attractive salary package

- Medical insurance

- bi-annual performance bonus

- Work from Home in rotary mode

- Morning transport facility

-  Fixed French working hours: 10h00-19h00/11h00-20h00 with Week End off

Job Overview
We use cookies to improve your experience on our website. By browsing this website, you agree to our use of cookies.

Sign in

Sign Up

Forgotten Password

Cart

Cart

Share