Description:
As a Security Engineer, you will be at the forefront of our mission to ensure the highest level of security and compliance for our client’s organization. Your expertise in the following areas is paramount:
Key Responsibilities
•Work closely on security aspects of multiple technologies and methodologies as it relates to operating systems,databases, access controls, patch management, encryption, antivirus, and vulnerability assessments etc. to assist the Engineering and Compliance team with effective research, data gathering, analysis, metrics, reporting and communications.
•Identify security prospects of multiple solutions that help keep the organization safe from threats.
•Experience in building and maintaining security systems.
•Provides direction to infrastructure, operations, data, and network teams throughout the implementation of security aspects in production, and beyond
.
•Maintains knowledge of engineering Next Gen designs, security trends, threats, and attack techniques.
•Builds and maintains effective relationships with management, peers, project managers, and internal customers.
•Translate threat intelligence into actionable security across tools such as endpoint
protection, Access management, patch management, firewall, IPS and malware detection across multiple security vendor platforms
•Get hands-on with in-depth investigations, malware analysis, and connecting the dots between user activities and network traffic to resolve complex security incidents.
The ideal candidate will have
•In-depth experience in the Microsoft 365 ecosystem, with a focus on Endpoint, Email, Vulnerabilities, and Threat Hunting.
•Proficiency within Microsoft's E5 licensing environment.
•Expertise in Identity Governance, Conditional Access, and Applications, including Single Sign On (SSO) implementation.
•Comprehensive understanding of Logging, Event Management, Incident Management, and Security Operations Center (SOC) runbooks.
•Automation, Data Connectors, and Analytic Rules.
•Proficiency in Kusto Query Language.
•Integration with Threat Intelligence feeds.
•Mastery of Endpoint Security tools, including Microsoft Defender for Endpoint (MDE), Microsoft InTune, JAMF.
•Expertise in system hardening and Intune policy/compliance configuration.
•Experience with Rapid7 and adherence to Microsoft Patch Tuesday.
•Proficiency in Common Vulnerability Scoring System (CVSS) scoring.
•Network Detection and Response (NDR) experience.
•Skills in Segmentation, Firewall Reviews, and packet analysis (Wireshark, etc.).
•Host isolation and containment strategies.
•Proficiency in DNS Security.
•Familiarity with KnowBe4, emphasizing the importance of user security awareness.
•Competency in Cloud Security practices, including assessment and remediation in Azure and AWS.
•Expertise in Identity and Access Management (IAM), Identity Provider (IdP), Privileged Identity Management (PIM), JustInTime (JIT) access.
•Knowledge of Azure Defender, Defender for Cloud suite, and Zero Trust principles across Azure, AWS, and GCP.
•Profound understanding of email security, including MSFT Exchange.
•Capability in SMTP, MAPI, and email header analysis for threat detection.
•Validation of SPF/DKI/DMARC configurations.
•Hands-on experience with the analysis and handling of suspicious email attachments and adherence to best practices.
Education & Qualifications
•Bachelor’s Degree in an IT related discipline
•CISSP or similar security related certification
•In lieu of certifications, at least 2 years of information security Experience in building and maintaining security system
Organization | HR Ways - Hiring Tech Talent |
Industry | IT / Telecom / Software Jobs |
Occupational Category | Information Security Engineer |
Job Location | Lahore,Pakistan |
Shift Type | Morning |
Job Type | Full Time |
Gender | No Preference |
Career Level | Intermediate |
Experience | 2 Years |
Posted at | 2024-05-06 6:23 pm |
Expires on | 2024-12-24 |