Security Engineer

Job purpose

We are seeking a skilled and motivated Security Engineer to join our Information Security team. In this role, you ll help protect the organization s infrastructure by designing, implementing, and maintaining security systems. The ideal candidate has a strong technical foundation, a proactive mindset, and a passion for cybersecurity. You ll work cross-functionally to embed security into our technology stack and ensure resilience against evolving threats.

Duties and responsibilities

• Design, implement, and manage security technologies (e.g., SIEM, IDS/IPS, DLP, endpoint protection).
• Conduct vulnerability assessments and penetration tests, lead remediation efforts.
• Monitor and respond to security alerts and incidents.
• Collaborate with IT, DevOps, and engineering to integrate security into architecture and CI/CD pipelines.
• Develop and enforce security policies, standards, and procedures.
• Perform threat modeling and risk assessments for systems and applications.
• Define and implement security hardening policies and reporting
• Stay current on emerging threats, vulnerabilities, and mitigation strategies.
• Support compliance efforts (e.g., ISO 27001, SOC 2, NIST, GDPR).

Qualifications

• Bachelor s degree in computer science; engineering, or related field.
• 6+ years of experience in security engineering or a similar technical role.
• Proven experience building and maintaining security infrastructure.
• Hands-on experience with cloud security (AWS, Azure, or Google Cloud Platform).
• Strong knowledge of OS and database security.
• Proficiency in networking and network security tools.
• Familiarity with antivirus, firewalls, authentication, and intrusion detection/prevention.
• Solid understanding of security protocols and cryptographic principles.
• Preferred certifications: CISSP, CEH, or equivalent.
• Knowledge of frameworks like NIST, CIS, and ISO.
• Experience with tools such as SIEM, SOAR, IAM, EDR, DLP, and IDPS.
• Skilled in vulnerability management platforms (e.g., Nessus, Qualys, Rapid7).
• Ability to assess and manage controls across multiple threat vectors.
• Strong analytical and problem-solving skills.
• Self-motivated, organized, and adaptable to changing priorities.
• Excellent communication skills across technical and non-technical audiences.
• Comfortable working in a fast-paced, agile team environment.