Position Summary
The Security Engineer plays a critical role in helping to design, implement and maintain various security tools that together form a layered defence against cyber threats.
This role involves evaluating, implementing, and managing security solutions across various domains, including endpoint protection, data loss prevention (DLP), email security, network security, vulnerability scanning, encryption, key management and detection engineering.
The ideal candidate will work closely with security operations, IT, and risk teams to deploy and optimize security tools, develop policies, and improve detection and response capabilities.
Key Responsibilities
- Security Tools EngineeringPartner with vendors to evaluate and implement security solutions, driving projects from proof-of-concept (POC) to full deployment.
- Ensure security tools are well-designed, thoroughly tested, and seamlessly integrated into operations.
- Provide expertise in various security domains and collaborate with stakeholders to minimize the impact on other systems and users.
Manage and enhance endpoint protection platforms (EPP/XDR/EDR), antivirus, and host-based intrusion detection/prevention systems (HIDS/HIPS). - Administer and optimize data loss prevention (DLP) solutions to safeguard against unauthorized data exfiltration and fine tuning DLP policies/rulesets.
- Oversee and maintain email security solutions (Secure Email Gateways, phishing protection, ICES, DMARC, SPF, DKIM) to protect against email-based threats.
- Configure and manage network security controls (firewalls, IDS/IPS, NAC, VPNs, proxies, WAFs) to ensure robust perimeter security.
Implement and maintain vulnerability scanning solutions to identify and address security risks. - Deploy and manage SIEM, UEBA, and SOAR tools for comprehensive security monitoring and response. Manage encryption technologies and key management solutions (KMS, HSM, PKI, TLS/SSL, disk encryption, database encryption) to secure sensitive data.
-
Requirements
- Degree in Computer Science, Computer Engineering or Information Security related fields.
- Efficient in handling changing priorities and managing multiple tasks.
- Adept at resolving design and functionality challenges independently with minimal guidance.
- Able to work autonomously with minimal supervision.
- Security certifications such CISSP, CISM, CCSP, CISA, AWS Certified Security - Specialty are highly desirable.
- Experience in Security Engineering for Cloud workloads is an added advantage.