We are looking for a Security Engineer to join our team and lead the design and implementation of security protocols across our technology infrastructure. This role is responsible for ensuring compliance with security standards, managing risks, and executing complex security initiatives. The ideal candidate will have strong technical expertise in security, networking, and IT infrastructure, along with hands-on experience in security tools and frameworks.
Key Responsibilities:
- Security Architecture & Implementation
- Lead the design, implementation, and maintenance of security infrastructure, ensuring robust protection across systems and networks. Develop and enforce security policies, standards, and guidelines.
- Risk Management & Compliance
- Oversee and manage compliance with regulatory requirements, policies, and security frameworks such as CIS/CSF. Continuously assess security risks and ensure proper controls are in place to mitigate potential threats.
- Vulnerability Assessment & Incident Response
- Perform regular vulnerability assessments, manage endpoint detection and response (EDR) systems, and respond to security incidents. Implement and maintain firewalls, multifactor authentication, and other critical security controls.
- Identity & Access Management (IAM)
- Manage and secure access to systems using IAM solutions, including Active Directory security and multifactor authentication. Ensure proper identity management controls are in place to protect sensitive data.
- Security Monitoring & Event Management
- Configure and operate Security Information and Event Management (SIEM) systems to monitor and respond to potential security events. Lead the investigation and resolution of security alerts.
- Networking & Zero Trust Architecture
- Implement and maintain secure network environments, employing zero trust architecture principles. Monitor network traffic and ensure security measures are in place to protect against unauthorized access.
- Collaboration & Leadership
- Lead cross-functional teams on security-related projects. Communicate complex security concepts to stakeholders and ensure alignment with organizational goals.
Qualifications:
- Education:
- Bachelor’s Degree in Computer Science, Information Technology, or a related discipline. Equivalent work experience may be considered.
- Certifications:
- Professional certifications such as CISSP, CEH, or equivalent are highly preferred.
- Technical Skills:
- Strong knowledge of security and networking concepts, including Linux and Windows OS, Active Directory, virtualization platforms, backup/disaster recovery, and enterprise applications.
- Security Expertise:
- Experience with security controls and frameworks (CIS/CSF), vulnerability scanning, EDR, firewalls, SIEM, IAM, multifactor authentication, and zero trust architecture.
- Experience:
- At least 5 years of experience in technology security, leading complex initiatives, managing compliance, and implementing security frameworks.