Security Engineer (IT)

Job Description:

• Assess threats, hazards, and vulnerabilities on a regular basis.
• Evaluate solutions and technology in light of cyber security standards.
• Recognize, evaluate, and rank the risks to IT security.
• Creates and manages the application of controls and strategies for risk mitigation.
• Keep the organization's risk register up to date and maintained.
• Keep an eye out for questionable activity in security logs and events.
• Keep an eye on possible data loss occurrences, take precautions against them, and look into any suspicions.
• Look into security incidents and put the right answers in place.
• Take part in simulations and exercises related to incident response.
• Support the implementation and upkeep of security technologies and tools.
• Collaborate closely to advance security best practices and awareness with IT operations, development, and other business groups.
• Keep abreast of applicable IT security laws and guidelines (e.g., PCI-DSS, ITRM, IM8, etc).
• Create and put into effect security guidelines and protocols.
• Observe and check compliance-related actions.

Qualifications:

• A bachelor's degree in information technology, cybersecurity, or a similar discipline (or comparable experience).
• A minimum of three years' experience in risk management, compliance, and IT security.
• Comprehensive knowledge of frameworks, techniques, and ideas related to IT security.
• A working understanding of pertinent IT security standards and laws.
• Knowledge of security technologies and tools, such as vulnerability scanners, SIEM, and IDS/IPS.
• Having a CISA, CISM, or CISSP certification will be advantageous.
• Programming experience with PHP, C++, and Java will be beneficial.