Information Technology - Cyber Security Engineer (Architecture and Engineering)

Job Description
You will be a member of the Group Information Security Team responsible for initiating, implementing and maintaining security products and solutions to support enterprise security.

Key Responsibilities

• Subject matter expert (SME) for the security systems owned by the Information Security Team.
• Ensure security systems are utilised to their maximum capabilities.
• Plan, identify, assess, design, operationalise and maintain multiple security related software and/or hardware.
• Recommend and drive cyber security solution and initiatives to improve cyber security of the organisation.
• Prepare RFQ and evaluation criteria. Proof of concept (POC) during product evaluation. Liaising with vendors to implement security solutions.
• Provide security consultancy, technical guidance, expertise, solutioning and education.
• Advise infrastructure teams on security design that is relevant and fit for purpose.
• Identify and assess cyber risks in the IT infrastructure environment.
• Review firewall requests.
• Keep up to date on emerging security threats and vulnerabilities on new platforms adopted by the SIA Group and propose mitigating controls.
• Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables.
• This is an individual contributor role. Deliver tasks with minimal supervision.
• Strong communication skills.

Requirements

• Degree in IT or related field, with at least 5 years in information security, especially in the application security space.
• Professional security certifications (CISSP, CSSLP, CEH etc) preferred.
• Experience in security products POC and RFQ.
• Prior experience in implementing and maintaining any of tools for EDR, XDR, SOAR, SIEM, UEBA, PAM, AM etc. and/or network security. Able to review firewall requests.
• Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.
• Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities. Any prior vulnerability management experience preferred.
• Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc.
• Strong oral, written, presentation and inter-personal skills.
• Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.
• Able to work independently and in a team-oriented, collaborative environment.