Job Description

Vacancy in Information Security

Post of Associate Information Security Engineer

Founded in 2006, the Sri Lanka Computer Emergency Readiness Team | Coordinating Centre (Sri Lanka CERT|CC) is Sri Lanka’s National CERT which has the mandate to protect the nation’s cyber space.

Sri Lanka CERT|CC has a vacancy for the position of Associate Information Security Engineer position as follows;

Job Responsibilities

• Assist in conducting security assessments and penetration testing of software applications.
• Help identify, analyze, and document security vulnerabilities and threats. Support the development and implementation of strategies for mitigating identified vulnerabilities.
• Collaborate with development teams to integrate security controls into the software development lifecycle.
• Assist in promoting and enforcing security best practices across application development stages.
• Support the response and investigation of security incidents related to applications.
• Ensure applications comply with industry standards, regulations, and internal policies.
• Maintain documentation of security assessments, findings, and remediation efforts.
• Develop competencies of the employee on the domains of information and Cyber Security.
• Conduct trainings and awareness sessions of cyber security and participate for communication activities.
• Conduct procurements to procure IT products and systems related to cyber-security.
• Implement national cyber-security projects or activities assigned by CISO - AS & IR or the CEO in line with the cyber-security strategy and action plans.
• Carry out any other function related to CERT assigned by the CISO - AS & IR.

Educational and Professional Qualifications

• A bachelor’s degree from a recognized university in the field of Information Security, Cyber Security, Computer Science or related.
• Professional qualification in the field of information security (not mandatory) eg: relevant certifications (e.g., CompTIA Security+, CCNA Security, etc) are a plus.
• One or more information security related certifications such as CISSP, CSSLP, GCIH, OSCP, CEH, CHFI etc would be added advantage.

Experience

• Knowledge on the latest theories, standards, and practices on cyber security.
• Minimum of 1 year industry experience in the field of information and Cyber security.
• Minimum of 6 months Intern/Trainee capacity in the field of information and Cyber security.
• Hands on Experience in Application Security, Kali Linux tools, Burp Suite, Mobile Application tools.

Other Skills/Abilities

• Good communication skills both verbal and written in English, Sinhala or Tamil.
• Ability to perform in a team environment.
• Ability to liaise with both local and international organizations.
• Ability for self-learning.

The age should not be more than 26 years old.

An attractive salary package based on current industry standards will be offered, along with medical insurance and travel allowance. The employment is a 2-year fixed term contract which is renewable based on the performance.

If you are confident that you are the ideal candidate for this position, e-mail your resume with a recent photo and two non-related referees to [email protected] within 10 days of this advertisement, stating “Associate IS Engineer”. Only shortlisted candidates will be notified.

Note: This job description is not intended to be all-inclusive. Employees may perform other related duties as negotiated to meet the ongoing needs of Sri Lanka CERT.

Chief Executive Officer

Sri Lanka Computer Emergency Readiness Team | Coordination Centre
Room 4-112, BMICH, Bauddhaloka Mawatha,
Colombo 00700
Tel: 011 2691692 / 011 2679888

Similar Jobs

State Mortgage & Investment Bank

Information Security & Compliance Officer

• Colombo
• Full Time
• 11 days ago

Sri Lanka CERT

Information Security Engineer

• Colombo
• Full Time
• 6 days ago