Key Responsibilities:

• Develop, implement, and manage security operations and procedures to ensure the protection of our IT infrastructure and data assets.
• Perform threat and vulnerability assessments, including identifying, evaluating, and reporting on security risks in a manner that meets compliance and regulatory requirements.
• Lead incident response efforts, including detection, investigation, and coordination of the response to security breaches and cyber incidents.
• Serve as an expert in the use and administration of a variety of security tools to monitor and manage network traffic and security alerts.
• Conduct security investigations and forensics analysis to understand the root cause of incidents and prevent recurrence.
• Maintain an in-depth understanding of Data-at-rest encryption, certificate validation, and other cryptographic principles and practices.
• Administer and manage security infrastructure such as IDS/IPS, Firewalls, SEIMs, Log Management systems, and syslog analysis.
• Implement and maintain robust access control systems, digital certificates, endpoint detection and response (EDR), single sign-on (SSO), multi-factor authentication (MFA), and threat hunting practices.
• Configure, manage, and troubleshoot VPNs, ensuring secure and reliable remote access to organizational resources.
• Provide expertise in HTTP and TCP/IP for the purpose of secure network design and traffic analysis.
• Ability to solve complex problems related to installation, implementation, maintenance, and operations of varying components of systems and infrastructure.
• Willingness to be part of IT Governance and Change Management processes.
• Willingness and ability participate in 24x7x365 system support rotation and handle escalations.
• Other duties as required to fulfill the senior security engineer position.

Required:

• Bachelor's or master's degree in computer science, Information Security, or a related field.
• A minimum of 10 years of experience in a security engineering role with a focus on security operations, threat and vulnerability management, and incident response.
• Demonstrated experience with network protocols and components (TCP/IP, DNS, DHCP, Switching, Routing, VLAN, Firewalls).
• Experience in configuring and managing IDS/IPS, Firewalls, SIEM, Log Management, EDR, and other security tools.
• Strong understanding of access control, digital certificates, SSO, MFA, and VPN technologies.
• Proven ability to conduct detailed security investigations and threat hunting.
• Strong knowledge of regulatory requirements and compliance issues affecting the professional services industry is preferred.
• Excellent analytical and problem-solving skills, with the ability to make sound and timely decisions.
• Strong communication and collaboration skills, with the ability to work effectively with both technical and non-technical teams.

Preferred qualifications:

• Professional security certifications such as CISSP, CEH, GCIH, GCIA, CCSP, or equivalent are highly desired.