IT Security Officer (ITSO)

Job Summary

We are seeking IT Security Officers (ITSOs) to support the organisation’s cybersecurity operations. The ITSOs will act as subject matter experts, providing security governance, monitoring, and technical advisory support to system managers and the Board’s Cybersecurity team.

The role covers on-premise and cloud hosting environments, including GDC, GCC, and GCC+ platforms. Responsibilities will be distributed across the team to ensure comprehensive security coverage while maintaining close collaboration across all security domains.

Key Responsibilities

System Security & Compliance

• Conduct system security reviews, system hardening checks, and risk assessments based on recognised benchmarks such as CIS Benchmarks.

• Develop, review, and maintain system hardening baselines using industry or manufacturer benchmarks.

• Create, review, and maintain Standard Operating Procedures (SOPs) related to IT security operations.

• Plan and schedule annual reviews of security hardening documentation.

• Perform compliance reviews and track remediation of identified findings.

Security Monitoring & Incident Response

• Monitor and respond to security alerts, including phishing alerts and endpoint anti-virus alerts.

• Support vulnerability scans, penetration tests, and audit activities.

• Communicate with users and stakeholders regarding malicious emails and security incidents in accordance with SOPs.

• Perform malware scans on endpoints and support investigation activities when required.

Cloud Security & Vulnerability Management

• Work with cloud security engineers to review findings from Cloud Security Posture Management (CSPM) tools, including government in-house platforms.

• Conduct routine reviews of CSPM findings and monitor suppression expiry dates to ensure continued validity.

• Follow up with system officers-in-charge and infrastructure teams on remediation actions.

• Maintain tracking records of remediation status, including completed, in-progress, and escalated items.

• Assess security findings to determine validity or false positives, including the use of approved analytical tools where applicable.

Technical Support & Governance

• Provide vulnerability monitoring and recommend mitigation actions to system owners and infrastructure teams.

• Offer security advice and recommendations for new projects and system enhancements.

• Support governance and compliance tools by updating findings, suppression records, and approval documentation.

• Respond to auditors’ requests for information (RFI) related to security monitoring and compliance.

Reporting & Security Awareness

• Prepare and consolidate monthly security reports highlighting task progress and outstanding non-remediated risks.

• Present security updates to the Board’s Cybersecurity team.

• Coordinate and support monthly IT security awareness training and briefings for users to strengthen organisational security posture.

Required Skills & Experience

Technical Skills

• Cloud Security (AWS, Azure or equivalent)

• Security alerts monitoring and incident handling

• Security audit and compliance support

• Vulnerability management and remediation

• Risk assessment and security governance

Experience

• Minimum 2 years of experience in Cloud Cybersecurity, including:

  • Security assessment

  • Vulnerability management

  • Incident handling

• Experience supporting both cloud and on-premise environments, particularly GCC environments, is required.

Tools & Platforms (Preferred)

• Azure Log Analytics

• AWS CloudWatch

• AWS Security Hub / CSPM

• Microsoft Defender for Cloud

Qualifications

• Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or a related discipline.

• At least one internationally recognised cybersecurity certification, such as:

  • CISSP

  • CISM

  • CRISC

  • CISA

General Requirements

• Strong analytical and problem-solving skills

• Good written and verbal communication skills in English

• Strong collaboration skills to work effectively with cross-functional teams, system owners, and vendors