Information security engineer Job Description
Information security engineer Job Description Template
Information Security Engineers safeguard company data by implementing protective measures, conducting system audits, and responding to security breaches. Responsibilities encompass developing security protocols, risk assessments, and disaster recovery plans.
Responsibilities:
- Develop and implement security policies, protocols, and procedures to ensure confidentiality, integrity, and availability of information
- Conduct security assessments and vulnerability testing to identify and mitigate potential security risks
- Monitor network activity and security events to identify and respond to security incidents
- Configure and maintain security infrastructure, including firewalls, intrusion detection/prevention systems, and other security tools
- Collaborate with cross-functional teams to ensure security measures are integrated into all systems and processes
- Stay current with industry trends and emerging threats to inform and improve security strategies
- Train employees on security best practices and conduct security awareness campaigns
- Participate in incident response planning and execution to minimize the impact of security incidents.
Requirements:
- Bachelor's or Master's degree in Computer Science, Information Technology or a related field.
- At least 3 years of experience in information security engineering.
- Knowledge of security frameworks, such as ISO 27001, NIST, or CIS Controls.
- Experience with security tools and technologies, such as firewalls, intrusion detection/prevention systems, SIEM, and vulnerability scanners.
- Ability to perform security assessments and penetration testing to identify vulnerabilities and recommend mitigation strategies.
- Strong analytical, problem-solving, and communication skills.
- Knowledge of cloud security, network security, and application security principles.
- Certifications in information security, such as CISSP, CISM, or CEH, are preferred.
