Information Security Engineer

We’re looking for an experienced Information Security Engineer to help protect our organization’s networks, systems, and data. If you’ve got 5+ years of hands-on experience with security infrastructure and a passion for keeping things safe from cyber threats, you could be the perfect fit for our team!

As an Information Security Engineer, you’ll be on the front lines of ensuring our IT systems are secure, helping us identify and address risks, and responding quickly when issues arise. You'll collaborate with multiple teams across the company, making sure that we're always one step ahead in terms of security.

What You’ll Be Doing:

• Managing Security Infrastructure: You’ll be responsible for setting up and maintaining our security systems like firewalls, VPNs, and intrusion detection tools to protect our networks from potential threats.
• Assessing and Reducing Risk: You’ll regularly assess our systems for vulnerabilities, identify risks, and recommend actions to make sure we stay secure and compliant.
• Handling Security Incidents: When things go wrong, you’ll be leading the charge on investigating, containing, and resolving security incidents, ensuring minimal impact to the business.
• Ensuring Compliance: You’ll ensure we meet various security standards and regulations (think GDPR, HIPAA, PCI-DSS) by conducting audits and assessments.
• Monitoring for Threats: You’ll monitor security systems to detect any suspicious activity and take action before small issues turn into big problems.
• Team Collaboration & Training: Security is everyone’s responsibility! You’ll work with other teams to raise awareness and make sure everyone is up to speed on security best practices.
• Designing Secure Systems: You’ll work on the security design for new applications, ensuring that security is built in from the ground up—whether we’re working in the cloud, on-premises, or in a hybrid environment.
• Testing and Scanning for Vulnerabilities: You’ll run regular security tests and scans to stay ahead of potential threats, making sure we’re not leaving any doors open for attackers.
• Documenting and Reporting: You’ll keep track of our security policies, incidents, and any changes we’ve made, and provide clear reports to management with your findings and recommendations.

What We’re Looking For:

• Technical Skills:
• Strong understanding of networking protocols like TCP/IP, DNS, and HTTP
• Experience with firewalls, intrusion detection systems (IDS/IPS), VPNs, and other security tools
• Comfortable working with different operating systems (Linux, Windows, Unix)
• Familiarity with cloud security (AWS, Azure, Google Cloud) is a plus
• Scripting experience in Python, Bash, or PowerShell for automation
• Certifications (Nice to Have):
• CISSP, CISM, CEH, or similar security certifications
• Security-related certifications like CompTIA Security+ or AWS Certified Security – Specialty
• Experience:
• At least 5 years of hands-on experience in information security roles
• A good understanding of security frameworks (NIST, ISO 27001) and risk management
• Proven experience with security monitoring, threat detection, and incident response