Information Technology Security Engineer

Job Description:

We are seeking a talented and motivated Security Engineer to join our dynamic team. In this role, you will be responsible for designing, implementing, and maintaining robust security systems to protect our organization’s infrastructure, applications, and data from security threats.

Key Responsibilities

• System Security: Design, implement, and maintain security measures for systems, applications, and networks to protect against cyber threats.
• Monitoring: Continuously monitor and analyze security logs, alerts, and reports to identify and mitigate potential vulnerabilities or incidents.
• Incident Response: Investigate and respond to security incidents, providing detailed analysis and recommending corrective actions.
• Risk Assessment: Perform security risk assessments, vulnerability scans, and penetration tests to identify gaps in security and propose solutions.
• Compliance: Ensure compliance with industry standards, regulations, and best practices such as ISO 27001, NIST, GDPR, or CMMC.
• Collaboration: Work closely with IT, DevOps, and other teams to integrate security into system development and deployment processes.
• Documentation: Develop and maintain comprehensive security documentation, including policies, procedures, and guidelines.
• Education: Conduct security awareness training for employees to promote a security-conscious culture.

Required Skills and Qualifications

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
• Experience: Proven experience as a Security Engineer or in a similar role.
• Certifications: Relevant certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable.
• Technical Proficiency:
• Strong knowledge of firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint security solutions.
• Proficient in scripting and automation (e.g., Python, Bash, or PowerShell).
• Hands-on experience with SIEM tools, threat intelligence platforms, and forensic tools.
• Skills:
• Deep understanding of TCP/IP protocols, DNS, and other network fundamentals.
• Familiarity with cloud security tools and platforms (AWS, Azure, or Google Cloud).
• Strong analytical and problem-solving skills.