Sr. Security Engineer

Senior Security Engineer

Position Summary

The Senior Security Engineer is responsible for assessing and mitigating security risks across IT infrastructure. This role conducts regular security audits, vulnerability assessments, and implements effective countermeasures to protect systems, networks, and data. The engineer collaborates with cross-functional teams to design and enforce security policies, responds to incidents, and stays ahead of emerging threats while mentoring junior team members and fostering a culture of security awareness.

Key Responsibilities

Security Implementation & Monitoring : Design, implement, and oversee security measures to protect systems, networks, and information assets.

Architecture & Design : Define system security requirements and develop security architecture and detailed designs.

Operations & Incident Response : Configure, troubleshoot, and monitor security infrastructure; respond rapidly to security incidents and vulnerabilities.

Process & Documentation : Create and maintain standard operating procedures, incident reports, and technical documentation.

Innovation & Automation : Develop tools and automation to reduce security risks and improve efficiency.

Continuous Learning & Mentorship : Stay updated on threat landscapes and mentor junior staff on best practices.

Risk Management : Provide technical leadership for governance, risk, and compliance activities.

Requirements

Technical Skills

Strong foundation in security systems (firewalls, IDS / IPS, antivirus, authentication, etc.).

In-depth knowledge of OS, database, network, and web application security.

Familiarity with modern monitoring and logging solutions.

Experience with cloud platforms (Azure, AWS, GCP).

Hands-on experience with Windows Server environments.

Proficiency in technical documentation and reporting.

Experience implementing contemporary risk / compliance frameworks (e.g., NIST CSF, ISO 27001, COBIT, CIS).

Professional Attributes

Collaborative, supportive, and innovation-driven mindset.

Strong ownership, accountability, and multitasking skills.

Business-aware decision-making.

Ability to clearly communicate technical content to non-technical stakeholders.

Self-motivated, proactive, and organized.

Commitment to continuous learning and adapting to evolving threats.

Education & Experience

Degree in Computer Science or related field, or equivalent experience.

Proven hands-on experience building, deploying, and managing security systems.

Broad exposure to cybersecurity principles, protocols, and tools.

Demonstrated history of continuous learning (e.g., certifications, industry engagement) preferred.