IT Security Engineer

Job Summary

The IT Security Engineer will be responsible for designing, implementing, and maintaining security solutions to protect the FG systems, networks, and data. This role involves monitoring security infrastructure, identifying vulnerabilities, responding to incidents, and ensuring compliance with security policies and standards. The IT Security Engineer will collaborate with cross-functional teams to strengthen defenses, mitigate risks, and support the organizations overall cybersecurity strategy.

Key Responsibilitie

• sManage and maintain the ISO 27001-compliant ISMS by updating documentation, records, and controls
• .Drive proactive adoption of ITIL, COSO, NIST, and COBIT frameworks across the IT division
• .Perform risk assessments, identify improvement opportunities, and support teams in defining remediation or mitigation controls while evaluating residual risks
• .Document compliance requirements and perform technical assessments of networks, applications, and systems to prepare for audits, certifications, and annual reviews
• .Review and analyze change controls from a security perspective, escalating issues to relevant stakeholders when necessary
• .Foster strong working relationships with stakeholders to ensure effective management of information security risks
• .Collaborate with the PMO to evaluate security requirements for all new projects
• .Conduct gap analyses of IT service management practices against ISO 20000, ITIL, and COBIT standards
• .Support and participate in internal IT audits, ensuring alignment with compliance requirements
• .Develop, update, and enforce security policies in line with ISO 27001 standards
• .Audit and monitor antivirus, XDR, MFA, and other security controls to identify and address vulnerabilities
• .Assess, enhance, and optimize existing security systems across the organization
• .Design, implement, and maintain internal security procedures to safeguard data
• .Partner with IT teams to ensure appropriate security controls and best practices are consistently applied
• .Audit systems and information management processes to detect and prevent breaches
• .Prepare project documentation in collaboration with the PMO for IT security initiatives

.
Required Qualifications & Skil

• lsBachelors degree in Computer Science, Information Security, Information Technology (Masters degree is a plus
• ).8-10 years of experience in IT security, risk management, or related IT role

s.
Preferred Certifications (considered a strong plu

• s):CISSP (Certified Information Systems Security Profession
• al)CISM (Certified Information Security Manag
• er)CISA (Certified Information Security Audit
• or)CRISC (Certified in Risk and Information Systems Contr
• ol)CEH (Certified Ethical Hack
• er)ISO 27001 Lead Implementer or Lead Audi

tor