Security Engineer

• Design, implement, and manage security solutions to protect organizational systems, networks, and applications from cyber threats and vulnerabilities. • Conduct regular security assessments, including vulnerability scans, penetration testing, and risk analysis, to identify and mitigate potential security risks. • Monitor network traffic and system logs using security tools such as SIEM (Splunk, QRadar), IDS/IPS, and firewalls to detect and respond to security incidents. • Develop and enforce security policies, procedures, and best practices to ensure compliance with industry standards and regulatory frameworks such as ISO 27001, GDPR, NIST, and PCI DSS. • Implement and manage identity and access management (IAM) solutions, including multi-factor authentication (MFA), Single Sign-On (SSO), and role-based access control (RBAC). • Collaborate with development teams to integrate security into the software development lifecycle (DevSecOps), conducting secure code reviews and providing guidance on secure coding practices. • Configure and maintain endpoint protection, anti-malware, and data loss prevention (DLP) solutions to safeguard organizational devices and data. • Perform incident response activities, investigating security breaches, identifying root causes, and implementing measures to prevent future incidents. • Conduct security awareness training for employees, promoting a culture of security across the organization. • Stay updated with the latest cybersecurity threats, trends, and technologies, recommending new tools and techniques to enhance the organization's security posture. • Ensure encryption of sensitive data both in transit and at rest using technologies such as SSL/TLS, AES, and VPNs. • Work with external vendors and third parties to evaluate and manage security risks associated with outsourcing and supply chain relationships. • Document security incidents, vulnerabilities, and mitigation actions for compliance and audit purposes. Qualifications: • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field. • 5+ years of experience in cybersecurity or information security, with a solid understanding of security principles, threat models, and defensive strategies. • Expertise in security tools and technologies such as SIEM (Splunk, QRadar), IDS/IPS, firewalls, endpoint protection, and DLP. • Hands-on experience with vulnerability scanning and penetration testing tools like Nessus, Qualys, Burp Suite, or Metasploit. • Knowledge of cloud security concepts and technologies, including security best practices for AWS, Azure, or Google Cloud platforms. • Familiarity with compliance frameworks such as ISO 27001, GDPR, PCI DSS, NIST, and SOC 2. • Experience with identity and access management (IAM), encryption technologies, and secure network protocols (e.g., SSL/TLS, VPN). • Strong knowledge of secure coding practices, code analysis tools, and security integration within the software development lifecycle (DevSecOps). • Experience in managing incident response, including the use of forensics tools and techniques for investigating security breaches. • Strong analytical and problem-solving skills with the ability to assess risk and recommend security solutions. • Excellent communication skills, with the ability to convey security issues and solutions to both technical and non-technical stakeholders. • Relevant certifications such as CISSP, CEH, CISM, CompTIA Security+, or Certified Cloud Security Professional (CCSP) are highly preferred.