Information Security Engineer

Educational Qualifications

• Bachelor’s Degree / Master’s in IT or a relevant discipline.
• Relevant certifications like CISSP, CEH, Security+, or specialized vendor certifications.

Skills Required:

• Deep knowledge of network security, operating systems, cloud security principles, and cryptographic protocols. Hands-on experience with security tools like SIEM, vulnerability scanners, and endpoint detection and response (EDR).

Trainings:

• CISSP, CEH, Security+

Brief Job Description:

• Responsible for designing, implementing, and maintaining security controls and systems to protect company data, while also managing risk assessments and mitigation strategies in alignment with ISO 27001 standards.

Key Responsibilities:

• Develop and maintain security architecture and controls (e.g., firewalls, encryption, access management).
• Conduct regular vulnerability assessments and penetration tests to identify and prioritize security weaknesses.
• Conduct regular risk assessments and maintain the risk register.
• Identify, evaluate, and mitigate information security risks.
• Perform vulnerability scans and penetration testing.
• Monitor and respond to security incidents and breaches.
• Support internal and external audits with technical evidence.
• Collaborate with IT, compliance, and business units to ensure ISMS effectiveness.
• Stay updated on emerging threats and recommend proactive measures.