Security Engineer

Overview

• Lead the design and implementation of cybersecurity controls and monitoring systems to ensure enterprise data and system security.
• Conduct advanced threat detection, incident response, and vulnerability management to mitigate risks effectively.
• Ensure compliance with regulatory and organizational security standards, including frameworks like NIST and ISO 27001.
• Collaborate with IT and business units to enhance security architecture and governance practices.
• Administer and optimize tools for endpoint detection, SIEM, IDS/IPS, and anti-malware systems.
• Develop and maintain incident response playbooks, procedures, and security awareness training programs.
• Produce and maintain reports and dashboards on security metrics and risk posture.
• Coordinate vulnerability scans, penetration testing, and remediation tracking with internal and external teams.
• Support operational management by maintaining policies and procedures related to the information security program.

Key Responsibilities & Duties

• Monitor security events and alerts using SIEM and EDR tools, ensuring timely response to incidents.
• Investigate and analyze cybersecurity breaches, coordinating incident response and forensics efforts.
• Develop and improve incident response procedures and tactical response strategies.
• Conduct regular vulnerability assessments and collaborate on remediation efforts with IT engineers.
• Administer cybersecurity tools and ensure compliance with established security frameworks.
• Enhance cybersecurity policies, standards, and procedures to align with organizational goals.
• Provide technical expertise in safeguarding enterprise systems and data confidentiality, integrity, and availability.
• Manage relationships with third-party security providers, including MSSPs and penetration testing vendors.
• Administer cyber security awareness training programs and phishing simulation platforms.

Job Requirements

• Bachelor’s degree in Computer Science, Engineering, or related field required.
• Minimum 6 years of experience in cybersecurity operations; 9 years preferred.
• Proficiency in SIEM and EDR tools for threat detection and response.
• Certifications such as CISSP, CISA, or cloud security certifications preferred.
• Experience with IT security regulations, frameworks, and best practices.
• Strong analytical, problem-solving, and interpersonal communication skills.
• Ability to prioritize tasks in high-pressure environments and make sound decisions.
• Hands-on experience with vulnerability tools, endpoint security technologies, and advanced threat protection.
• Knowledge of TCP/IP, LAN, WAN, and endpoint security technologies.