Senior Information Security Engineer / Analyst

About The Position

Requirements

• Advanced expertise in firewalls, IPS/IDS, vulnerability management, and remediation.
• Strong hands-on experience with incident response, risk assessment, and security assessment.
• Proficiency with scripting (PowerShell, Python, VB Script) for automation.
• Experience with DevOps security practices.
• Strong knowledge of SIEM platforms, SOC tools, and log management.
• Expertise in cloud security, encryption methods, and secure architecture.
• Proven knowledge of compliance frameworks: NIST, CIS, SOC 2.
• Practical experience implementing ZTNA in enterprise environments.

Nice To Haves

• Leadership experience managing or guiding Security Operations Center (SOC) teams/tools.
• Familiarity with threat intelligence platforms and advanced detection techniques.
• Knowledge of penetration testing, red team/blue team operations.
• Experience with disaster recovery and business continuity planning from a security perspective.
• Ability to develop security roadmaps and influence enterprise security strategy.
• Strong communication and leadership skills to engage both technical and executive stakeholders.

Responsibilities

• Lead administration of firewalls, IPS/IDS, SIEM platforms, and SOC tools.
• Oversee vulnerability management programs and ensure timely remediation.
• Direct incident response activities, including investigation, containment, and lessons learned.
• Perform and supervise risk assessments and security assessments.
• Design and implement Zero Trust Network Access (ZTNA) models.
• Manage cloud security controls, encryption technologies, and key management.
• Develop and enforce change management and configuration management practices.
• Script automation for monitoring, remediation, and reporting using PowerShell, Python, or VB Script.
• Ensure compliance with NIST, CIS, and SOC 2 frameworks.
• Provide mentorship to junior analysts and collaborate with business leaders on security strategy.