Overview
The Security Engineer plays a crucial role in ensuring the security and integrity of the organizations systems and data. They are responsible for designing implementing and maintaining security measures to protect the organization against cyber threats and unauthorized access.
Key Responsibilities
- Conduct regular security assessments and risk analysis to identify potential vulnerabilities.
- Develop and implement security policies protocols and procedures.
- Monitor network and systems for security breaches or intrusions.
- Perform penetration testing to identify and address security weaknesses.
- Configure and manage firewalls intrusion detection systems and other security tools.
- Collaborate with crossfunctional teams to ensure security best practices are followed.
- Respond to security incidents and conduct thorough investigations.
- Stay updated on latest security threats technologies and best practices.
- Conduct security audits and compliance assessments.
- Implement and manage security solutions such as encryption and multifactor authentication.
- Provide technical support and guidance to IT and other teams on securityrelated matters.
- Conduct vulnerability assessments and manage remediation efforts.
- Participate in the development and review of security policies and procedures.
- Contribute to the development and implementation of disaster recovery and business continuity plans.
- Proactively identify and address security concerns related to new projects and initiatives.
Required Qualifications
- Bachelors degree in Computer Science Information Technology or a related field.
- Professional certifications such as CISSP CISM or CEH.
- Proven experience in a security engineering or related role.
- Deep understanding of security protocols and cryptography.
- Experience with security tools such as SIEM IDS/IPS and DLP.
- Strong knowledge of network security and web technologies.
- Experience with security incident response and forensic investigation.
- Proficiency in risk assessment and management.
- Excellent understanding of security best practices and standards.
- Strong problemsolving and analytical skills.
- Ability to communicate complex technical concepts to nontechnical stakeholders.
- Experience in cloud security and DevSecOps practices.
- Must know NIST Standards HIPAA PCI DSS ISO 27001).
- Effective time management and organizational skills.
- Ability to work effectively in a fastpaced and dynamic environment.
pci dss,cryptography,risk management,risk analysis,network security,web technologies,encryption,security,incident response,multi-factor authentication,ids/ips,security incident response,hipaa,security tools,forensic investigation,security protocols,compliance assessments,dlp,intrusion detection,protocols,intrusion detection systems,vulnerability management,iso 27001,penetration testing,firewalls,procedures,security policies,security audits,security assessments,vulnerability assessments,business continuity plans,risk assessment,siem,devsecops practices,cloud security,nist standards,disaster recovery