Reporting To: Head of Engineering
Key Responsibilities
- Develop System Security Strategies: Design and implement security policies, protocols, and procedures.
- Ensure Security Systems Compliance: Maintain compliance with relevant security standards and regulations.
- Incident Response: Lead incident response efforts, investigate breaches, and implement corrective actions.
- Documentation and Reporting: Maintain detailed security documentation and provide regular compliance and incident reports.
Duties
Security Planning and Implementation
- Develop and implement security policies, protocols, and procedures.
- Design security architecture for new and existing systems.
- Integrate security measures into the development lifecycle of applications and systems.
Risk Management
- Conduct risk assessments and vulnerability analysis to identify potential threats.
- Develop and implement strategies to mitigate identified risks.
- Monitor systems for potential security breaches and vulnerabilities.
Incident Response
- Establish and manage an incident response plan.
- Respond to security incidents, mitigate damage, and implement corrective actions.
- Conduct post-incident analysis to improve future response efforts.
Security Monitoring and Management
- Monitor security logs and alerts using SIEM tools.
- Conduct regular security audits and reviews to ensure policy compliance.
- Maintain and update security systems, including firewalls, IDS/IPS, and antivirus software.
Training and Awareness
- Conduct security training and awareness programs for employees.
- Promote a culture of security within the organization.
- Stay informed about the latest security trends, technologies, and threats.
Collaboration and Communication
- Collaborate with IT teams and stakeholders to integrate security into IT infrastructure and applications.
- Communicate security risks and incidents to management and relevant parties.
- Work with vendors and security consultants to enhance security measures.
Security Tools and Technologies
- Evaluate and recommend security tools and technologies to strengthen security posture.
- Implement and manage security solutions, such as encryption, multi-factor authentication, and data loss prevention.
- Perform regular updates and patches for security software and systems.
Required Skills
- Problem-Solving Abilities: Strong troubleshooting and critical thinking skills.
- Attention to Detail: Meticulous in identifying and addressing potential security issues.
- Strong Communication Skills: Ability to effectively communicate risks and solutions.
- Collaborative: Works well with cross-functional teams and external partners.
Education Requirements
- BSc in Computer Science, Engineering, or Software Engineering with 3+ years of experience in similar roles.
Essential Qualifications
- Excellent work ethic.
- Good understanding of systems security (certifications are an added advantage).
Needed
- 1 Security Engineer.