Security Engineer III

About The Position

Requirements

• Bachelor's Degree or equivalent experience in IT Security, Computer Science.
• A valid and active certification in Information Security or Cybersecurity.
• 5+ years of hands-on experience in cybersecurity or a related field, including areas like network security, cloud security, and threat intelligence.
• Innovative Mindset: Always looking for new tools, techniques, and strategies to improve the organization's security posture.
• Strong ability to convey technical security issues to non-technical audiences, including management and other stakeholders.
• Excellent troubleshooting skills with a proactive approach to solving complex security challenges.
• Ability to work well with cross-functional teams, including DevOps, IT, and development teams, to integrate security into all layers of the organization's infrastructure.
• Proficiency with firewalls, IDS/IPS, endpoint protection, SIEM, encryption, VPNs, and multi-factor authentication (MFA).
• Strong knowledge of vulnerability scanning tools and penetration testing techniques, with the ability to find and exploit weaknesses in an organization's security infrastructure.
• In-depth understanding of networking protocols (TCP/IP, DNS, HTTP, SSL/TLS) and how to secure them.
• Expertise in securing cloud infrastructures, particularly AWS, Azure, or Google Cloud, including IAM, encryption, and security monitoring tools.
• Experience with configuring and maintaining SIEM platforms and analyzing logs for unusual activities.

Nice To Haves

• Certified Information Systems Security Professional (CISSP)
• Certified Ethical Hacker (CEH)
• Offensive Security Certified Professional (OSCP)
• GIAC Security Essentials (GSEC)
• Certified Cloud Security Professional (CCSP)
• AWS, GCP, or Azure Cloud Security Engineer Certification
• Experience integrating security into CI/CD pipelines and automating security controls in software development.
• Understanding of Zero Trust security models and their application in modern IT environments.
• Expertise in managing user identities and permissions, especially in cloud or hybrid environments.
• Ability to analyze and apply threat intelligence to enhance the organization's defense mechanisms.

Responsibilities

• Establish monitoring and detection mechanisms to identify potential threats, and lead or assist in responding to incidents.
• Conduct vulnerability assessments, penetration testing, and remediation of security weaknesses.
• Automate tasks where possible, using scripting and configuration management tools.
• Architect and implement security controls, including firewalls, intrusion detection systems, and encryption technologies.
• Review applications and systems to ensure industry best practices and security hardening.