The primary profile of an Enterprise Security Engineer will be responsible for designing, implementing, and maintaining security architectures and frameworks that protect enterprise systems and will conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate potential threats. Enterprise Security Engineer is also responsible for monitoring security alerts, managing security appliances, and ensuring compliance with industry standards and regulations.
Functional Responsibilities
Design, implement, and maintain security architectures and frameworks to protect enterprise systems and data.
Conduct regular security assessments, vulnerability scans, and penetration testing to identify and address potential security threats.
Monitor security alerts and incidents, responding promptly to mitigate risks and protect sensitive information.
Oversee the management of security appliances, including patch management for firewalls, Network Access Control (NAC) systems, load balancers, and other network security devices.
Collaborate with cross-functional teams to ensure security is integrated into all aspects of the organizations operations.
Establish the mechanism to maintain the compliance of security devices with statutory and regulatory compliances.
Stay up to date with the latest security trends, threats, and technologies, recommending improvements and innovations as necessary.
Provide security training and awareness programs for employees to promote a culture of security within the organization.
Support incident response activities, including investigations, reporting, and remediation efforts.
Evaluate and implement security tools and technologies to enhance the organizations security posture, including Privileged Access Management (PAM), File Integrity Monitoring (FIM), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR).
Work closely with IT and development teams to ensure secure software development practices.
Manage and secure cloud solutions, ensuring best practices for cloud security are followed.
Academic & Professional Qualifications
Bachelors degree in computer science, Information Technology, Cybersecurity, or a related field.
Relevant security certifications (e.g., CISSP, CEH, CompTIA Security+) are preferred.
Experience
5+ years of experience in enterprise security, information security, or related roles.
Skills and Requirements
Strong knowledge of security frameworks, protocols, and best practices (e.g., NIST, CIS, ISO).
Exceptional experience handling network security devices, including firewalls, NAC, and load balancers.
Proficiency in security tools and technologies (e.g., firewalls, IDS/IPS, SIEM, DLP).
Experience with security appliance patch management and vulnerability assessment tools and methodologies.
Familiarity with cloud security principles and practices (e.g., AWS, Azure, Google Cloud).
Strong analytical and problem-solving skills, with the ability to work independently and as part of a team.
Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.