Application Security Engineer

Overview

Key Responsibilities

• Conduct regular security assessments and risk analysis to identify potential vulnerabilities.
• Develop and implement security policies protocols and procedures.
• Monitor network and systems for security breaches or intrusions.
• Perform penetration testing to identify and address security weaknesses.
• Configure and manage firewalls intrusion detection systems and other security tools.
• Collaborate with crossfunctional teams to ensure security best practices are followed.
• Respond to security incidents and conduct thorough investigations.
• Stay updated on latest security threats technologies and best practices.
• Conduct security audits and compliance assessments.
• Implement and manage security solutions such as encryption and multifactor authentication.
• Provide technical support and guidance to IT and other teams on securityrelated matters.
• Conduct vulnerability assessments and manage remediation efforts.
• Participate in the development and review of security policies and procedures.
• Contribute to the development and implementation of disaster recovery and business continuity plans.
• Proactively identify and address security concerns related to new projects and initiatives.

Required Qualifications

• Bachelors degree in Computer Science Information Technology or a related field.
• Professional certifications such as CISSP CISM or CEH.
• Proven experience in a security engineering or related role.
• Deep understanding of security protocols and cryptography.
• Experience with security tools such as SIEM IDS/IPS and DLP.
• Strong knowledge of network security and web technologies.
• Experience with security incident response and forensic investigation.
• Proficiency in risk assessment and management.
• Excellent understanding of security best practices and standards.
• Strong problemsolving and analytical skills.
• Ability to communicate complex technical concepts to nontechnical stakeholders.
• Experience in cloud security and DevSecOps practices.
• Must know NIST Standards HIPAA PCI DSS ISO 27001).
• Effective time management and organizational skills.
• Ability to work effectively in a fastpaced and dynamic environment.

pci dss,cryptography,risk management,risk analysis,network security,web technologies,encryption,security,incident response,multi-factor authentication,ids/ips,security incident response,hipaa,security tools,forensic investigation,security protocols,compliance assessments,dlp,intrusion detection,protocols,intrusion detection systems,vulnerability management,iso 27001,penetration testing,firewalls,procedures,security policies,security audits,security assessments,vulnerability assessments,business continuity plans,risk assessment,siem,devsecops practices,cloud security,nist standards,disaster recovery