Summary

Company Information

Nogle Limited operates as an investment group for venture capital deals. The Company invests in network technology, education technology, venture capital funding, business consultancy, and other fields. Nogle operates businesses over world.

Role Information

We are seeking a highly skilled and motivated Enterprise Security Lead to join our dynamic team. The role is responsible for designing, building, testing and implementing security systems within BTSE’s IT Enterprise infrastructure. The role must have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as a best practice security product.

The role is expected to also be a guardian of staff identity and access and is responsible for safeguarding critical and confidential information belonging to BTSE. The Identity and Access Management aspect of this role is responsible for account life cycle management and auditing as appropriate.

You will collaborate closely with cross-functional teams, including infrastructure, developers personnel, and security professionals, to integrate security and IAM best practices seamlessly into our infrastructure. Your primary focus will be on implementing security controls, monitoring, automating security processes, investigations, threat hunting and promoting a culture of security within our organization.

Key Responsibilities and Deliverables:

Acquire an understanding of a company’s IT and information systems

Lead the security solutioning and design for the IT Enterprise including Identity and Access Management (IAM).

Collaborates with application and infrastructure owners to define integration initiatives encompassing all externally and internally-facing applications and systems

Document and establish enterprise security architecture and find a solution to increase the security level of Windows/ macOS/ Mobile environments

Provide user account life cycle management, including creating, provisioning, securing, and inactivation of access.

Participate in projects and production support operations focused on implementing IAMintegrations and Roles Based Access Control (RBAC) strategies and integrations.

Collaborate in the design, implementation, and support of the IAM technologies.

Identify gaps and work towards remediation of gaps in existing security architecture and recommend changes or enhancements

IT application architecture, to work with application owners to architect major application processes.

Plan architectural improvements and guidance which supports developers, engineers and analysts

Lead initiatives designed to share knowledge across Security Platforms and/or Technology teams. Identifies, recommends, coordinates, and delivers timely knowledge to support teams regarding technologies, processes or tools. Develops and executes strategies to increase Cloud Security knowledge throughout the enterprise.

Security Automation: Develop and maintain automation scripts, tools, and frameworks to streamline security processes, such as configuration management, and continuous security monitoring.

Security Testing and Compliance: Establish and maintain a robust testing framework, including penetration testing, vulnerability scanning, and security assessments, to identify and mitigate potential security risks.

Apply risk-based thinking enabling teams to make the right security decisions and priorities

Incident Response and Monitoring: Participate in incident response activities, investigate security incidents, and contribute to improving incident response processes. Develop and maintain security monitoring systems to detect and respond to security threats proactively.

Continuous Improvement: Stay up-to-date with the latest security threats, vulnerabilities, solutions and industry best practices. Continuously evaluate and enhance the security posture of our systems, infrastructure, and applications.

Collaboration and Training: Work closely with cross-functional teams, including developers, system administrators, and security professionals, to promote a culture of security awareness and knowledge sharing. Conduct training sessions to educate and empower team members on secure practices.

Your Profile:

At least 10 years of experience in Security Architecture or Engineering with at least 3 years of experience in IAM

Experience with enterprise applications (architecture, development, support, and troubleshooting).

Demonstrated success using Active Directory or Identity and Access management tools

Demonstrated success administrating Identity Management and Access

Demonstrated success with the development of workflows and documentation related to

Identity and access management.

Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes such as data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.

Proficiency in scripting and automation languages a plus (e.g., Bash, PowerShell, Python).

Strong analytical and problem-solving skills, with the ability to identify and address security vulnerabilities and risks.

Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams.

Experience with web3 and blockchain technologies are a plus.

Relevant certifications (e.g., CISSP, CEH, AWS Certified Security Specialty) are a plus.

Able to effectively listen, speak, read and write in English, with Chinese as a plus.

As a technical leader, you will have the opportunity to make a significant impact on the security posture of our organization by bridging the gap between infrastructure, operations, and security teams. If you are passionate about security, possess a strong technical background, and thrive in a fast-paced environment, we would love to hear from you.