Job Overview
We are looking for a skilled and experienced
Security Engineer to join our global team in a remote capacity. The ideal candidate will have extensive experience in cybersecurity, threat mitigation, risk assessment, and system security. As a Security Engineer, you will play a crucial role in safeguarding our company’s IT infrastructure, data, and network systems. You will be responsible for implementing security protocols, detecting vulnerabilities, and responding to potential threats in real-time. If you have a strong understanding of network security, threat intelligence, and incident response, we want to hear from you!
Key Responsibilities
- Network Security: Design, implement, and maintain secure network architectures, including firewalls, VPNs, and intrusion detection/prevention systems (IDS/IPS) to ensure robust network security.
- Vulnerability Management: Continuously assess and identify vulnerabilities across the organization's infrastructure and applications. Perform regular security scans and penetration tests to proactively detect security weaknesses.
- Incident Response: Investigate, respond to, and resolve security incidents and breaches. Lead root cause analysis and remediation efforts to mitigate risks and improve overall security posture.
- Security Monitoring: Set up and manage security monitoring systems to track security alerts, suspicious activities, and potential threats. Use SIEM (Security Information and Event Management) tools for real-time threat detection.
- Risk Assessment: Perform security assessments and risk analysis of internal and external applications, systems, and services. Develop security policies and procedures to address identified risks.
- Threat Intelligence: Stay updated with the latest cybersecurity threats, trends, and technologies. Conduct threat hunting activities to identify potential risks before they become active threats.
- Security Awareness: Provide guidance and training to internal teams on secure coding practices, threat awareness, and best security practices to enhance the company’s overall security culture.
- Compliance & Regulations: Ensure compliance with industry regulations and standards (e.g., GDPR, HIPAA, ISO 27001, NIST, etc.). Help implement security frameworks that adhere to these standards.
- Cloud Security: Secure cloud environments (AWS, Azure, Google Cloud, etc.) by implementing best practices, monitoring security configurations, and managing cloud security tools.
- Collaboration: Collaborate with IT, DevOps, and product teams to integrate security into the development pipeline (DevSecOps), ensuring the security of applications and services.
- Documentation & Reporting: Maintain clear documentation of security processes, incidents, and solutions. Provide regular security reports and metrics to leadership.
Required Qualifications
- Experience: 6 to 12 years of professional experience in cybersecurity, with at least 4+ years focusing on security engineering or infrastructure security.
- Technical Expertise: Strong experience with security tools and technologies such as firewalls, IDS/IPS, SIEM, encryption, VPN, and endpoint security solutions.
- Security Frameworks & Standards: Deep understanding of security frameworks (NIST, ISO 27001, CIS, etc.), risk management, and compliance requirements.
- Programming & Scripting: Proficiency in programming or scripting languages (e.g., Python, Bash, PowerShell, or similar) to automate security tasks and develop security tools.
- Penetration Testing & Vulnerability Assessment: Proven experience conducting penetration testing, vulnerability assessments, and using tools like Nessus, Burp Suite, or Metasploit.
- Cloud Security: Hands-on experience securing cloud environments (AWS, Azure, Google Cloud), including identity and access management (IAM), security configurations, and cloud security posture management.
- Incident Response & Forensics: Experience in incident detection, analysis, and remediation, including forensic investigation of security breaches.
- Network Security: Strong knowledge of network protocols (TCP/IP, DNS, HTTP, etc.), firewalls, VPNs, and network traffic analysis.
- Certifications: Industry certifications such as CISSP, CISM, CISA, CEH, AWS Certified Security – Specialty, or similar are highly desirable.
- Problem-Solving & Analytical Skills: Strong problem-solving abilities, critical thinking, and the ability to troubleshoot complex security issues in a fast-paced environment.
- Communication Skills: Excellent written and verbal communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
Desired Skills
- Threat Intelligence Tools: Experience with threat intelligence platforms and tools such as ThreatConnect, Splunk, or similar.
- DevSecOps: Familiarity with integrating security into CI/CD pipelines and DevOps practices.
- Automation: Experience automating security monitoring and incident response tasks using orchestration tools like SOAR (Security Orchestration, Automation, and Response).
- Incident Management Tools: Experience with incident management platforms such as ServiceNow, Jira, or others.
- Penetration Testing Certifications: Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), or equivalent certifications.
- Data Loss Prevention (DLP): Knowledge of implementing DLP technologies and strategies to prevent data breaches and secure sensitive information.
Benefits
- Remote Flexibility: Full remote working option with flexible working hours to accommodate different time zones.
- Competitive Salary: Attractive compensation package based on experience and skills.
- Health & Wellness: Comprehensive health insurance plans (where applicable) and wellness programs.
- Learning & Development: Access to online courses, certifications, and training programs to continue your career growth.
- Work-Life Balance: Generous vacation days and paid time off.
- Collaborative Team: Work with a diverse, global team focused on innovation and creating a secure digital environment.
- Career Progression: Opportunity to take on leadership roles and expand your skill set in an evolving industry.
How To Apply
If you're a proactive and experienced Security Engineer with a passion for safeguarding IT infrastructures, we invite you to apply. Please submit your resume and cover letter detailing your experience and how you can contribute to the security of our organization.
Skills: intrusion detection/prevention systems (ids/ips),incident response,incident management,security monitoring,vpns,vulnerability management,cloud,vulnerability assessment,siem,management,network security,security,cloud security,cloud security (aws, azure, google cloud),threat mitigation,cybersecurity,intelligence,firewalls,system security,risk,skills,devsecops,programming (python, bash, powershell),threat intelligence,security frameworks (nist, iso 27001, cis),risk assessment,data loss prevention (dlp),penetration testing
