Security Engineer Job Description
Security Engineer Duties & Responsibilities
To write an effective security engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included security engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Engineer
List any licenses or certifications required by the position: CISSP, PKI, GIAC, ITIL, CE, OSCP, CCNP, MCSE, CEH, GSEC
Education for Security Engineer
Typically a job would require a certain level of education.
Employers hiring for the security engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Information Security, Engineering, Education, Technical, Computer Engineering, Information Systems, Information Technology, Technology, Electrical Engineering
Skills for Security Engineer
Desired skills for security engineer include:
Desired experience for security engineer includes:
Security Engineer Examples
Security Engineer Job Description
- Review and tune IPS signatures/filters/policies as required based on escalations from the SOC, ITSIR and clients
- Escalating and alerting IPS issues to respective stakeholders and vendors as required
- Demonstrates expertise in information security and engineering practices
- Provide highest level of technical support for troubleshooting incidents and will update problem records in incident tracking system
- Provides technical advice on complex activities
- Formulates and defines specifications, develops, modifies, and maintains complex systems using vendor engineering releases and utilities for overall operational systems
- Performs high level systems analysis, evaluation, design, integration, documentation, and implementation of complex systems
- Directs and participates in all phases of system development with emphasis on planning, analysis, evaluation, integration, testing, and acceptance phases
- Applies business or technical principles to difficult technical issues to resolve engineering issues
- Prepares recommendations for system improvement for management and user consideration
- Significant experience with enterprise Windows-based architectures and security design
- Scripting and automation proficiency (e.g., Powershell, Python, Perl)
- Mobile fleet security program management experience
- A strong level of comfort with core Linux security principles and intricacies and the roles they play within an enterprise
- A love of system logs and the pictures they paint surrounding what occurred at any given time, no matter what format
- A minimum of 4 years’ within security engineering focused roles in medium to large scale enterprises, and 6 years of enterprise IT experience
Security Engineer Job Description
- Define, maintain and enforce application security best practices -- create secure design patterns and provide training and awareness to fellow engineers
- Consults on appropriate application security requirements and controls, and provides practical guidance on meeting these requirements and controls
- Consults on application security testing tools and services, with capabilities to guide and/or execute on application testing assignments
- Produce creative and inventive solutions for large problems
- Be an advocate for customer trust
- Experience of preparing commercial bids
- Understanding of IT systems & Networks
- Understanding of structured cabling systems
- Perform threat, risk, and vulnerability assessments on products and infrastructure
- Oversee the security of AWS
- Solid foundation in networking (TCP/IP, OSI model, LAN/WAN, cabling and data transmission types, network topologies, routing protocols, and remote access methods)
- Prior experience must include creating, implementing, and supporting reporting toolsets to capture, analyze and report on system and application metrics
- Provide operational support of various security technologies
- Ensure that security technologies are maintained and managed throughout the lifecycle
- Provide communication and reporting to management on system performance and lifecycle planning
- Communicates directly with data asset owners on integration opportunities and data collection requirements
Security Engineer Job Description
- Design, build and maintain network security including firewalls, runtime application self-protection, NAC, 802.1x, IPS, malware detection
- Complex Troubleshooting of Security Devices, with the primary responsibility for firewalls
- Working with developers to ensure vulnerabilities are fixed on time
- Collaborate and work with teams of technical experts including PKI, Database Monitoring, Malware analysis, Forensics, ForeScout, URL Filtering
- Work with the development team to see these ideas turned into production
- Build new rules based on our existing sensors to detect additional vulnerabilities and weaknesses
- Lead a fairly complex, high-priority project and/or process
- Contributes to product strategy for a specific product
- Communicates project status to clients
- Participates with various teams regarding network projects, change tickets, and trouble tickets
- Hands-on experience with a variety of different networking and security devices, such as firewalls, routers, IDS/IPS, vulnerability scanners, - Advantage
- 5+ years of dedicated information hands on security experience, where responsibilities include planning, deploying, managing and maintaining enterprise security systems such as Network Access Control (NAC), Security information and event management (SIEM) system, firewalls, intrusion detection/prevention systems (IDS/IPS), anti-virus systems, vulnerability scanning
- Knowledge and understanding of security-related laws, regulations and standards required
- Knowledge and understanding of best practices in security program management required
- A high level of integrity and trust required
- As a subject matter expert, act as a leader with other Security Engineering team members to support ongoing and long-term initiatives and projects
Security Engineer Job Description
- Conducts and /or participate in ethical hacking red team/blue team exercises
- Provides subject matter expertise on projects and program development, as assigned, performing and contributing to all aspects of project
- Consults on secure software assurance practices and principles in various SDLCs, including Agile, Iterative and Waterfall
- Exercises leadership behaviors in situations that are moderate in terms of complexity, ambiguity, and dependencies
- Provides system upgrade support for EISRM technology portfolio
- Provides level II/III support for Operations
- Monitoring compliance with company IT security policy and applicable laws (Mass privacy, HIPAA, PCI, SAS70 perform network penetration tests, application vulnerability assessment scans and risk assessment reviews)
- Experience serving as the security engineer of complex technology implementations in a product-centric environment
- Works tirelessly to ensure help developers create the most secure systems in the world while enhancing the privacy of all system users
- Performs privacy impact assessments and provides PII data security and monitoring
- Demands familiarity with principles, theories, concepts and technologies surrounding firewalls, IDS/IPS, applied knowledge of established procedures, policies and practices
- 2 to 3 years of experience in a dedicated security device management position
- 5+ years of professional IT work experience
- Possess professional certification or in process of obtaining
- Extensive networking experience (LAN, WAN, , MAN, route, switch, TCP, IP, IPv6, firewall, network load balancers, Disaster Recovery
- Knowledge of industry standard legal requirements and security policies
Security Engineer Job Description
- Provide expertise in general network security technologies, such as network taps, intrusion detection systems, next generation firewalls
- Collaborate effectively with bank entities, customers, staff, IT colleagues
- Determines, evaluates and communicates risks or threats to SYKES business objectives
- Supports and maintains the confidentiality of sensitive company and customer information
- Works as a member of a global team but remain productive and with attention to detail while working independently or without supervision
- Maintains project/task management prioritization when executing the requests of SYKES leadership and customers
- Maintains certifications and knowledge appropriate to the role
- Remain up-to-date on new technologies and vendor innovations to reduce technology costs and increase efficiency
- In-depth knowledge and experience with Cisco ASA and McAfee Proxy and IPS systems
- In-depth knowledge of Cisco firewall technologies (NG, routed, transparent, single \ multiple context)
- Familiarity with common threat methodologies such as SANS and OWASP
- Must be familiar with security principals, design, troubleshooting methodology for small to large scale complex networks
- Juniper JNCIA and/or JNCIS-SEC as a JunosOS Subject Matter expert
- Expertise on Cisco ASA FW's, Cisco IPS, Cisco Sourcefire, Cisco ISE, Palo Alto
- Cisco CCIE Security, CCNP Security, Palo Alto PCNSE
- Must be proficient at all vendor's documentation to research issue not trained on