Security Engineer

We are looking for a Security Engineer who is responsible for design, implement, and maintain systems to protect organizations from cyber threats, ensuring data confidentiality, integrity, and availability. They work across industries to safeguard IT infrastructure, applications, and networks through proactive risk management and incident response.

Key Responsibilities

• Security Infrastructure Management: Design and deploy firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption protocols across on-premises and cloud environments.
• Threat Monitoring: Analyze network traffic and security alerts to identify breaches, respond to incidents, and mitigate risks.
• Vulnerability Assessments: Conduct penetration testing and vulnerability scans to identify weaknesses, providing remediation strategies.
• Compliance & Auditing: Ensure adherence to regulations (e.g., HIPAA, GDPR) by reviewing security policies, supporting audits, and reporting compliance status.
• Collaboration: Work with IT, development, and product teams to integrate security into software development lifecycles (SDLC) and CI/CD pipelines.
• Automation & Tooling: Develop security automation for cloud environments (e.g., AWS), CI/CD workflows, and DevSecOps practices to enhance scalability.

Skills & Qualifications

• Technical Expertise: Proficiency in networking protocols, firewalls, SIEM tools, and cloud platforms (AWS, Azure).
• Certifications: CISSP, CISM, or CompTIA Security+ preferred.
• Programming: Scripting skills (Python, Bash) and familiarity with Infrastructure as Code (IaC) tools like Terraform.
• Education: Bachelor’s degree in computer science, cybersecurity, or related field.
• Experience: 5+ years in security engineering, incident response, or risk management.

Specializations

• Application Security: Secure coding practices, vulnerability management, and integration into DevOps pipelines.
• Cloud Security: Implement Zero Trust architectures, secure CI/CD workflows, and automate compliance in AWS/Azure.
• Product Security: Develop security frameworks for hardware/software products, ensuring compliance throughout development cycles.
• Threat Intelligence: Analyze emerging threats and design countermeasures.

Security engineers collaborate with IT, development, and leadership teams to embed security into all operational layers, balancing proactive defense with rapid response capabilities

Originally posted on Himalayas