This will be a remote based position reporting to the Head of Information Security.
PURPOSE OF THE ROLE: The Security Engineer is responsible for system, application & information security across the organisation.
Duties & Responsibilities
• Assist in implementing technical expertise and direction of the security team.
• IT Risk assessment, penetration test, vulnerability scans, and social engineering.
• Responsible for conducting monthly vulnerability scans and disaster recovery simulations
• Monitors Information Security industry trends and advises the team of critical information updates.
• Assist the security team with project initiatives to research, validate, and manage Information Security vendors and products to ensure robust detection, prevention, and monitoring tools are in place.
• Initiate cyber security investigations providing summaries and recommendations to resolve the matter. Work closely with IT and project teams to ensure that new projects meet or exceed information security requirements.
• Achieves Information Security and operational objectives by developing and executing strategic plans which reduce risk to information assets.
• Protects information assets by developing security strategies, directing system access control, monitoring, and response.
• Assists in Information Security projects to align with organizational strategic objectives, goals, and risk tolerance.
Key Outputs:
• Maintain an up-to-date incident register and ensure all relevant information is logged as required.
• Maintain detailed security documentation, including an incident register for all infrastructure incidents & outages.
• Manage real-time security incidents to minimize operational business impact and maximize availability.
• Proactively perform preventative maintenance to ensure required availability of information services, in line with operational business requirements.
• Support operational business requirements by providing documentation, guidance or assistance as directed by your line manager.
• Process support requests within SLA.
• Process SIEM security triggers as generated by the automated systems.
• Perform system and account administration tasks within SLA. Perform project-based activities as directed by the IT project manager.
• Perform auditable, proactive application & network penetration tests at least once a year.
• Manage the configuration, operation, and outputs of the various information security systems in use.
On a quarterly basis:
• Review Active Directory account, license & access to ensure no stale access or unused licenses remain.
On a monthly basis:
o Create a monthly incident report.
o Perform internal security awareness tests to gauge staff awareness and training compliance.
o Perform vulnerability scans on key systems & infrastructure.
o Review SIEM system configurations for potential optimization
On a weekly basis:
o Collect relevant metrics and KPIs
o Review recent changes to ensure documentation is up to date
o Review all unmitigated security vulnerabilities for possible mitigation
On a daily basis:
o Review security logs
o Review support desk tickets to ensure all tickets are processed according to SLA
o Review SIEM system health
Desired Experience & Qualification
The successful candidate must have the following experience/skills:
• At least 4 years of information security experience.
• At least 2 years of server administration experience.
• Experience with standards and best practices such as POPI, GDPR, SOC 2 compliance.
• Required demonstrated knowledge of information technology security trends and leading best practices.
• Experience and expertise in managing and administering infrastructure and data systems.
• Minimum of 2 years’ experience in at least five of the following: access control systems and methodology; business continuity and disaster recovery planning; risk, response, and recovery; network security architecture; security management practices; audit and monitoring; enterprise and IT risk assessments; incident response management.
• Demonstrable experience of managing complex disaster recovery plans & procedures.
• Demonstrable experience of drafting and introduction of data protection and disaster recovery policies.
• Requires working knowledge of ISP’s and its operations and procedures.
• Excellent time management skills and the ability to prioritize multiple initiatives and projects.
Competencies:
• Must be able to work under pressure.
• Able to work in a high-pressure environment.
• Be self-motivated and be willing to go the extra mile.
• Ability to establish strategic direction for the department and provide the roadmap of initiatives and priorities in support of that vision.
• Ability to operate at all levels of the team.
• Demonstrate flexibility and the ability to work in a team environment.
• Excellent interpersonal skills including oral and written communications.
• Ability to maintain a high level of confidentiality.
• Technically proficient in IT and Information Security controls and concepts.
• Strong organizational and planning skills, resourcefulness, and creative problem-solving skills.
Qualifications:
• Degree in Computer Science, Information Technology or related field is preferred.
• Certifications in Information Security is required.
Leave a Reply