Cybersecurity Lead Architect
Position Overview:TheCybersecurity Lead Architectis responsible for managing all aspects of cybersecurity across the university. This role will ensure the security of university systems and data against both external and internal threats, including potential threats from students, faculty, and staff. TheCybersecurity Lead Architectwill design and enforce policies, conduct regular security audits, and lead efforts to detect and mitigate security risks from within the university.
Key Responsibilities:
- Develop, implement, and maintain a comprehensive cybersecurity strategy, with a focus on mitigating both external and internal threats.
- Monitor network traffic and system logs to detect potential security issues from within the university, including improper use by students, faculty, or staff.
- Oversee the university's cybersecurity infrastructure, ensuring that tools like Barracuda, Microsoft SentinelOne, and SOS software are optimized to prevent internal data leaks or misuse.
- Conduct ethical hacking, penetration testing, and vulnerability assessments, with a specific focus on identifying insider threats and preventing unauthorized access to sensitive information by internal users.
- Collaborate with HR and academic departments to monitor faculty, staff, and student access levels and ensure compliance with cybersecurity policies.
- Lead cybersecurity awareness training for all staff, faculty, and students, ensuring compliance with university policies and the latest best practices in cybersecurity.
- Develop and enforce cybersecurity policies, including measures to prevent internal breaches, data theft, and unauthorized access by university personnel.
- Regularly audit access control systems and user privileges, ensuring internal threats are swiftly identified and mitigated.
- Manage incident response protocols for both external attacks and internal security breaches.
- Ensure full compliance with local and international data protection laws and university regulations concerning internal data access.
Qualifications:
- Bachelor's degree in Cybersecurity, Information Technology, or a related field (Master's preferred).
- Minimum of 7-10 years of experience in cybersecurity management, with experience addressing internal threats, insider risks, or misuse of IT systems.
- Certifications such as CISSP, CISM, or CEH (Certified Ethical Hacker) required.
- Strong understanding of network security, insider threat detection, and vulnerability management.
- Expertise in ethical hacking and incident response for both external and internal threats.
- Leadership skills and the ability to communicate cybersecurity risks effectively to non-technical stakeholders.
- Strong knowledge of cybersecurity laws, regulations, and industry standards, with particular focus on managing insider threats.
Kuwaiti Applicants Preferred.