Advisor, Security Architecture

Job purpose

The purpose of the role is to sponsor, organize and establish profound security architecture program considering comprehensive and holistic approach based on international standards, regulations and security best practices, with the target to organize and improve the complete lifecycle on orange IT Digital and telecom security. Manage security architecture that related capabilities e.g. security architecture framework to standardize and to align holistic implementation of security controls for Orange Egypt infrastructure and services to protect from internal and external security vulnerabilities and associated threats.

Key accountabilities

1. Manage the overall planning, design and implementation of Security Services Engineering projects.
2. Design and implement secure network architectures, including Endpoint security Solutions, intrusion detection systems, Anti-DDOS, SIEM, and other security controls including Preparing RFPs and handling POCs for new solutions.
3. deliver the short-term and long-term security architecture Plans
4. Plan security architecture related initiatives in coordination with internal & external stakeholders and manage vendors along with relevant internal department policies and procedures.
5. Handle security guidelines provided through Security Blueprints to ensure homogenous design & deployment across the different domains. These documents are accompanied by a respective Compliance checklist to document and support the project team during design & implementation phase, to perform a gap analysis at the time of project handover.
6. To provide architectural security guidance across business units with regard to cross-systems security considerations.
7. Conduct regular vulnerability assessments and penetration testing to identify weaknesses in the organization's systems and networks.

Qualifications, experience, skills and competencies

• Minimum Bachelor of Engineering / computer science
• Minimum 7 - 12 years of experience technical role in the Telecommunication industry or related fields.
• Security Certifications (CISSP, CISA, CISM, ) preferred
• Vendor Certifications (Cisco, Juniper, Palo Alto, F5, ) preferred
• Strong technical background in telecommunication environment; ability to grasp new technologies quickly
• Good knowledge on the following standards ISO 27xxx, ISO 18028 (ITU-T X.805), ITU-T X.1051 (ISO 27011) and PCI/DSS
• Familiar with IETF, NIST, NSA Security Guidelines, SANS references and Security frame works, etc.
• Technical expertise in technologies such as Content Security (WAF, Anti-X), Infrastructure Security (FW, NAC, DDoS), Strong Authentication (2-Factor Authentication, Single-Sign-On, ), Endpoint Security, Data Leak Prevention, Security events monitoring, Vulnerability/Patch Management, WLAN, VoIP etc.
• Project Management skills