Cyber Security Engineer

• Professional Services: Cyber Security & IT

As a Cyber Security Engineer, you will play a crucial role in safeguarding our organization's digital assets and information systems from cyber threats and attacks. You will work closely with our IT and Cyber Security teams to develop, implement, and maintain security measures that ensure the confidentiality, integrity, and availability of our data.

Main Responsibilities

1. Threat Detection and Prevention:

• Utilize advanced monitoring tools and techniques to identify and analyze potential security threats.
• Design and implement security measures to prevent unauthorized access, malware infections, and other cyber attacks.
• Stay updated on emerging threats and vulnerabilities, and proactively implement countermeasures to mitigate risks.

2. Incident Response and Management:

• Develop and maintain incident response plans to effectively address security incidents and breaches.
• Lead or participate in investigations to determine the root cause of security incidents and implement corrective actions.
• Coordinate with relevant stakeholders to contain and remediate security incidents in a timely manner.

3. Security Infrastructure Management:

• Manage and maintain security infrastructure, including firewalls, intrusion detection/prevention systems, and endpoint protection solutions.
• Conduct regular security assessments and audits to ensure compliance with industry standards and regulations.
• Recommend and implement enhancements to security systems and processes to strengthen our overall security posture.
• Provide operational information technology security and maintenance support to ensure that the organisation’s server infrastructure, i.e. Linux, Microsoft, etc. is not compromised in any way.
• Conducts vulnerability scans and risk assessments.
• Performs day to day operations, management and administration to protect the organisations cyber information integrity, confidentiality and availability of information assets and technology infrastructures.

4. Security Awareness and Training:

• Develop and deliver security awareness training programs for employees to promote best practices and mitigate human error risks.
• Provide guidance and support to staff on security-related inquiries and incidents, fostering a culture of security awareness and vigilance.
• Manages cyber security audits and third party penetration tests.

KPI’S

• System & network administration (Windows, Linux & hypervisors such as VMware, Hyper-V, etc.)
• Network security
• Information security policies
• Firewall administration
• Network protocols
• Process improvement

Qualifications and Experience

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 3 – 5 years relevant cyber security experience
• Certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification would be advantages
• Understanding of ISO27001 framework
• Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration,
• OSI model, defense-in-depth and common security elements.
• Experienced in analyzing high volumes of logs, network data and other attack artifacts in support of incident investigations
• Experience with vulnerability scanning solutions
• Exposure to, or understanding of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic, Splunk)
• Experience with EDR technologies
• Understanding of mobile technology and OS (i.e. Android, iOS, Windows)

Key competencies and skills

• Routers, hubs, and switches
• Strong IT skills and knowledge including hardware, software and networks
• Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems
• A forensic approach to challenges
• A deep understanding of how hackers work and ability to keep up with the changing security landscape
• Ability to seek out vulnerabilities in IT infrastructures
• Excellent problem-solving skills and the ability to analyze complex security issues.
• Effective communication skills with the ability to convey technical information to non-technical stakeholders.

Personal attributes

• Self-motivated and self-managed
• Able to communicate effectively, both written and verbal
• Be able to work with and in various teams within the organization
• Ability to work well under pressure
• Willingness to learn
• Have the ability to write clear and concise documents
• Report on progress and raise issues / problems if and when necessary
• Professionalism
• Analytical and problem solving capabilities