Job description

Job brief

Here is a job description for a Senior System Security Engineer

We are seeking a highly skilled and proactive System Security Engineer to join our team. As a System Security Engineer, you will be responsible for designing, implementing, and maintaining robust security measures to protect our organization's IT systems and data. You will work closely with cross-functional teams to assess security risks, develop security strategies, and implement solutions to safeguard against cyber threats. The ideal candidate should have a strong background in system security, a deep understanding of security protocols, and the ability to proactively identify and mitigate potential security vulnerabilities.

Responsibilities:

• Conduct regular security assessments and risk analyses to identify vulnerabilities and potential threats to our organization's IT systems and infrastructure.
• Develop and implement security policies, standards, and procedures to ensure compliance with industry regulations and best practices.
• Monitor and analyze security logs and event data from various systems to detect and respond to security incidents in a timely manner.
• Configure and manage security tools and solutions, including firewalls, intrusion detection/prevention systems, and anti-malware software, to protect against cyber threats.
• Collaborate with the IT team to implement and maintain secure network configurations, including access controls, segmentation, and VPN configurations.
• Design and oversee the implementation of secure authentication and authorization mechanisms for our systems and applications.
• Develop incident response plans and lead incident response efforts in the event of security breaches or cyber-attacks.

Preferred Skills::

• Excellent problem-solving and analytical skills to assess and address complex security challenges.
• Effective communication skills to convey security concepts and findings to technical and non-technical stakeholders.
• Ability to work independently and collaboratively in a team environment to achieve security objectives.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degrees or relevant certifications (e.g., CISSP, CISM, CompTIA Security+) are highly desirable.
• Proven experience as a System Security Engineer or in a similar role, with a track record of implementing and maintaining security measures for IT systems and infrastructure.
• In-depth knowledge of network security protocols, security frameworks, and encryption technologies.
• Strong understanding of operating system security (Windows, Linux, etc.) and secure system administration practices.
• Experience with security monitoring tools, such as SIEM (Security Information and Event Management) and log analysis tools.
• Familiarity with cloud security best practices and experience with securing cloud-based infrastructure (e.g., AWS, Azure, GCP).
• Knowledge of secure coding practices and secure software development methodologies.
• Participate in the evaluation and selection of security-related products and technologies to enhance the organization's security capabilities.