[Remote] Cybersecurity and Data Protection Officer

Note: The job is a remote job and is open to candidates in USA. Amideast is a leading organization focused on education and training in the Middle East and North Africa. They are seeking a Cybersecurity and Data Protection Officer to ensure the secure operation of computer systems and network connections while maintaining compliance with cybersecurity standards. Responsibilities • Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices • Implement, maintain, and monitor security compliance such as ISO, NIST, and SOC • Design and advise on the implementation of disaster recovery plan for operating systems, databases, networks, servers, and software applications • Design and implement incident response plans based on filed office laws and regulations • Design, implement, and monitor data protection policies and procedures • Assess need for any security reconfigurations and execute them if required • Conduct email phish-hunting and submit malicious senders for blocking through anti-phishing policy • Execute Amideast’s security awareness program and report on user compliance • Keep current with emerging security alerts and issues • Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts • Interact and negotiate with vendors, outsourcers, and contractors to obtain protection services and products • Recommend, schedule, and perform security improvements, upgrades, and/or purchases • Participate in deploying, managing, and maintaining all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software • Guide connection security for local area networks, Company website, Company intranet, and e-mail communications • Guide the security of Amideast databases and data transferred both internally and externally • Design, perform, and/or oversee penetration testing of all systems to identify system vulnerabilities • Design, implement, and report on security system and end user activity audits • Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity. Interpret activity and make recommendations for resolution • Recommend, schedule (where appropriate), and apply fixes, security patches, disaster recovery procedures, and any other measures required in the event of a security breach • Evaluate new security software and/or technologies • Provide on-call security support to end-users Skills • College diploma or university degree in the field of computer science with focus on Cybersecurity • Five (5) years equivalent work experience • One or more of the following certifications: Certified Ethical Hacker (CEH), GIAC Security Essentials Certification, GIAC Certified Enterprise Defender, ISACA Certified Information Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP • Knowledge of regulatory requirements and industry standards, such as GDPR, HIPAA, NIST, and ISO 27001 • Hands-on experience implementing at least one security standard compliance for an organization and leading the certification process • Knowledge of applicable practices and laws relating to data privacy and protection and working experience implementing at least one privacy standard • Knowledge of law enforcement practices and procedures in the US and the MENA region • Intuition and keen instincts to preempt attacks • Strong practical experience conducting penetration testing and vulnerability assessments • High level of analytical and problem-solving abilities • Ability to conduct research into security issues and products as required • Broad hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices • In-depth technical knowledge of network, PC, Microsoft, and Linux operating systems • Working technical knowledge Microsoft Cloud Security Portal for Office365 • Working technical knowledge of current systems software, protocols, and standards • Strong knowledge of TCP/IP and network administration/protocols • Hands-on experience with devices such as hubs, switches, and routers • Strong interpersonal and oral communication skills • Highly self-motivated and directed • Strong organizational skills • Excellent attention to detail • Ability to effectively prioritize and execute tasks in a high-pressure environment • Able to work in a team-oriented, collaborative environment • Fluency in Arabic and/or French languages Company Overview • AMIDEAST Inc is an education and training center, Preparing individuals for jobs in the global economy. It was founded in 1951, and is headquartered in Washington, District of Columbia, USA, with a workforce of 501-1000 employees. Its website is Apply tot his job