IT Security Engineer

  • Abu Dhabi
  • Techjunction

Duration: 1 Year – Extendable

An IT Security Engineer is responsible for ensuring the security and integrity of an organization’s information systems and networks. They play a vital role in protecting sensitive data, mitigating security risks, and implementing measures to safeguard against cyber threats. The job description of an IT Security Engineer typically includes the following responsibilities:

  • Security Infrastructure: Designing, implementing, and managing security infrastructure, including firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), antivirus software, and other security tools.
  • Vulnerability Assessment: Conducting regular vulnerability assessments and penetration tests to identify and address potential security weaknesses or vulnerabilities in systems and networks.
  • Incident Response: Developing and implementing incident response plans and procedures to handle security incidents effectively, including investigation, containment, and recovery.
  • Security Policies and Procedures: Establishing and enforcing security policies, standards, and procedures to ensure compliance with industry regulations and best practices. This includes data protection, access control, password policies, and security awareness training.
  • Security Monitoring and Threat Intelligence: Implementing and managing security monitoring tools and systems to detect and respond to security threats in real-time. Staying updated on the latest security threats and trends through threat intelligence sources.
  • Identity and Access Management (IAM): Managing user access controls, authentication mechanisms, and enforcing least privilege principles to ensure secure user identities and permissions.
  • Security Audits and Compliance: Conducting security audits to assess compliance with regulatory requirements and internal security policies. Collaborating with internal and external auditors to address any security gaps or non-compliance issues.
  • Security Architecture: Collaborating with system administrators, network engineers, and software developers to design secure architectures and ensure security measures are incorporated into systems and applications from the ground up.
  • Security Awareness and Training: Developing and delivering security awareness programs and training sessions for employees to promote a culture of security and educate them about best security practices.
  • Incident Investigation and Forensics: Conducting forensic analysis and investigations to determine the root cause of security incidents, gathering evidence, and documenting findings for legal and disciplinary purposes.

In summary, an IT Security Engineer is responsible for establishing and maintaining a secure IT environment by implementing and managing security infrastructure, conducting vulnerability assessments, responding to security incidents, enforcing security policies, and ensuring regulatory compliance. They play a critical role in protecting organizations’ data, systems, and networks from cyber threats.