Information Technology Security Engineer

IT Security Engineer

Summary

This role is responsible for securing and maintaining the overall IT infrastructure, including networks, servers, back-end applications, desktops, and operating systems. The key focus is to safeguard the information and systems used by our branches, partners, customers, and central support center.

Responsibilities:

Security Architecture & Design: Collaborate with the IT team to design, implement, and maintain robust security solutions aligned with industry standards and regulations. Evaluate new security technologies (e.g., next-generation firewalls, zero-trust network access) to enhance overall protection.

Threat Detection & Response: Proactively monitor network activity for suspicious behavior and potential breaches using Security Information and Event Management (SIEM) tools. Analyze security logs and alerts to identify and respond to incidents efficiently. Implement and maintain intrusion detection and prevention systems (IDS/IPS).

Vulnerability Management: Conduct regular vulnerability assessments and penetration testing using industry-standard tools to identify and prioritize network weaknesses. Work with IT teams to remediate vulnerabilities and patch security holes through vulnerability management solutions.

Disaster Recovery & Business Continuity: Develop, maintain, and test a comprehensive disaster recovery plan to ensure rapid recovery from outages, cyberattacks, or natural disasters. Collaborate with other departments to ensure business continuity aligns with the disaster recovery plan.

Security Policy & Procedures: Develop, implement, and enforce security policies and procedures to ensure compliance with internal and external regulations (e.g., PCI DSS, HIPAA). Conduct security awareness training to foster a culture of cybersecurity best practices.

Communication & Collaboration: Work effectively with internal stakeholders across departments (IT, Engineering, Operations) to communicate security risks and solutions. Collaborate with external vendors to maintain and update security software and services.

Qualifications:

Bachelor's degree in computer science, information technology, cybersecurity, or a related field (or equivalent experience).

Minimum of 5+ years of experience in network security administration.

Strong understanding of network security concepts, protocols, and technologies (firewalls, VPNs, IDS/IPS, etc.).

Experience with vulnerability scanning and penetration testing tools.

Working knowledge of security best practices and compliance frameworks.

Excellent problem-solving, analytical, and critical thinking skills.

Strong communication and collaboration skills.

Ability to work independently and as part of a team.

Preferred Skills:

Security certifications (e.g., Security+, CCNA Security, CISSP, GSEC).

Familiarity with IT audit frameworks (e.g., ITGC, PCI, ISO 27001).

Experience with scripting languages (Python, Bash) for automation tasks.

Experience with security information and event management (SIEM) tools (e.g., Splunk, ELK Stack).

Familiarity with on-premise and cloud security concepts (e.g., Azure Security, AWS Security).

Technical Requirements (These may change over time):

Experience with various security systems and applications (e.g., firewalls, intrusion detection/prevention systems, multi-factor authentication solutions).

Experience with server operating systems (e.g., Windows Server, Linux), server virtualization software (e.g., VMware, Hyper-V), network equipment (e.g., routers, switches), and applications commonly used in IT environments.

Experience with backup/disaster recovery solutions and planning (e.g., Veeam, Exagrid).