What are the responsibilities and job description for the Security Engineer position at SEKO Logistics?
Job Description:
KEY ACCOUNTABILITIES INCLUDE:
EDUCATION & EXPERIENCE:
KEY ACCOUNTABILITIES INCLUDE:
- Continuous improvement, implementation, management, and enhancement of managed security platform tools (both in-house and managed security services).
- Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
- Participate in assimilating recommendations from threat intelligence providers to Document security threats and assess the damage they cause.
- Review email security SaaS platform data, review cloud-based email system/data, review cloud data, and review end-point protection platform on daily basis for potential security incidents.
- Prioritize, resolve, and mitigate known and reported vulnerabilities to maintain a high-security standard. Work collaboratively with teams to assist them in resolving vulnerabilities
- Develop and implement company-wide best practices for IT security and risk mitigation.
- Develop global security awareness and training program.
- Implement, maintain, and monitor controls based on common security frameworks.
- Work with external parties to routinely test for internal and external vulnerabilities.
- Train IT staff on best practices and implementation requirements for a secure infrastructure and DevOps.
- Build security workflows for secure code deployment and validation of existing code.
- Research security enhancements and make recommendations to leadership.
- Stay up to date on information technology trends, services, technologies, compliance/regulations, and industry security standards.
- Develop a culture built around awareness and risk avoidance.
- Maintain patch management of servers, PCs, etc. and report for compliance reasons on routine basis.
- Participate in the development of a safe and healthy workplace. Comply with instructions given for their own safety and health and that of others, in adhering to safe work procedures. Co-operate with management in its fulfilment of its legislative obligations.
- Other duties as assigned by management.
- Experience in translating penetration test results and security assessment recommendations into actionable plan and implementing those recommendations.
- Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
- Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
- Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
EDUCATION & EXPERIENCE:
- Bachelor's degree in computer science or related field.
- 5 years’ experience in information security or equivalent experience managing various aspects of security such as identity management, firewalls, security awareness SaaS platforms, and working with managed security providers providing SIEM/firewall support.
- GCIH, Cloud Security certifications, MDR Certifications with vendors, any GIAC Certification
- Experience in deploying zero-trust network access products and supporting it
- Any GIAC Certification above entry level
- Any GIAC Certification above entry level