IT/Security Engineer - Digital Infrastructure

Job Description

• Design, implement, and maintain secure IT infrastructure (servers, networks, endpoints, and cloud environments) in line with best practices
• Support SOC 2, GDPR, ISO 27001, and ISO 22301 certification efforts by implementing security and privacy controls and preparing audit evidence
• Lead and support incident management processes, including investigation, root cause analysis, remediation, and reporting
• Participate in change management processes to ensure security risks are assessed and mitigated before deployment
• Manage and configure security tools (SIEM, IDS/IPS, endpoint security, vulnerability scanners, firewalls, IAM solutions). Conduct vulnerability assessments and track remediation efforts to close security gaps
• Develop and maintain security architecture standards and system hardening guidelines
• Monitor IT and security systems for threats, respond to incidents, and improve response capabilities
• Perform risk assessments and vendor security reviews, and support gap remediation plans
• Maintain up-to-date documentation, security policies, operational procedures, and audit records
• Provide training and awareness programs to IT staff and other stakeholders
• Drive continuous improvement by reviewing controls, monitoring processes, and aligning with evolving threats and compliance requirements

Person Specification

• Bachelors degree in Information Technology, Cybersecurity, Computer Science, or a related field (or equivalent experience)
• 3+ years of experience in IT infrastructure, systems engineering, and security operations
• Hands-on experience with firewalls, IDS/IPS, SIEM, endpoint security, vulnerability management, and cloud security tools
• Strong understanding of security and compliance frameworks: SOC 2, GDPR, ISO 27001, ISO 22301
• Experience with incident management, disaster recovery, and business continuity planning
• Proficiency in IT service management (ITSM) practices, including Change Management and Problem Management. Knowledge of security architecture principles, identity and access management (IAM), encryption, and secure configuration management
• Strong analytical, troubleshooting, and documentation skills
• Certifications preferred - CompTIA Security+, Network+, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISO 27001 Lead Implementer/Lead Auditor, Cloud certifications (AWS/Azure Security, CCSP)