Security Engineer

Service Center

Responsibilities

• Security Infrastructure Design: Design, implement, and maintain robust security architectures using Azure security tools and frameworks.
• Azure Security Management: Manage and configure Azure security services, including Azure Security Center, Azure Defender, Azure Identity Management, and APIM.
• Identity Management: Implement and manage identity and access management (IAM) solutions to ensure secure and efficient user access control.
• Privileged Identity Management (PIM): Implement and manage privileged identity management solutions to control and monitor access to critical systems.
• CyberArk Management: Deploy, configure, and maintain CyberArk solutions to secure privileged accounts and credentials.
• Incident Response: Respond to security incidents, perform root cause analysis, and implement corrective actions to prevent recurrence.
• Security Monitoring and Auditing: Continuously monitor security alerts and events, conduct regular security audits, and ensure compliance with security policies and standards.
• Vulnerability Management: Identify and remediate vulnerabilities in the security infrastructure, including patch management and system hardening.
• Policy Development: Develop and maintain security policies, procedures, and documentation to ensure alignment with industry best practices and regulatory requirements.
• Collaboration: Work closely with other IT and security teams to integrate security best practices into the organization's IT processes and systems.
• Training and Awareness: Provide training and guidance to staff on security best practices and policies.

Requirements

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Experience: Minimum of 5 years of experience in cybersecurity
• Privileged Identity Management: Experience implementing and managing privileged identity management solutions, preferably with Azure PIM
• CyberArk: Proven experience deploying, configuring, and managing CyberArk solutions
• Technical Skills: Proficiency in network security, firewalls, intrusion detection/prevention systems, and endpoint protection
• Certifications: Relevant certifications such as CISSP, CISM, Azure Security Engineer Associate, CyberArk Trustee or Defender
• Analytical Skills: Strong analytical and problem-solving skills with the ability to analyze complex security issues and develop effective solutions
• Communication Skills: Excellent verbal and written communication skills, with the ability to communicate complex security concepts to technical and non-technical stakeholders.
• Team Player: Ability to work collaboratively in a team environment and manage multiple projects simultaneously
• Scripting and Automation: Experience with scripting languages (e.g., PowerShell, Python) for automation of security tasks
• Cloud Security: Knowledge of other cloud platforms such as AWS and GCP
• SIEM: Experience with Security Information and Event Management (SIEM) tools
• Compliance: Understanding of regulatory requirements and standards such as GDPR, HIPAA, PCI-DSS, and NIST