Security Engineering Analyst

Role Purpose: The purpose of this role is to design the organization’s computer and network security infrastructure and protect its systems and sensitive information from cyber threats.

Responsibilities

• Design and develop enterprise cyber security strategy and architecture.
• Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses.
• Identify risks associated with business processes, operations, information security programs, and technology projects.
• Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge.
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
• Provide product best fit analysis to ensure end‑to‑end security covering different facets of architecture such as layered security, zoning, integration aspects, API, endpoint security, data security, compliance, and regulations.
• Demonstrate experience in performing security assessments against NIST Frameworks, SANS, CIS, etc.
• Provide support during technical deployment, configuration, integration, and administration of security technologies.
• Demonstrate experience around ITIL or key process‑oriented domains such as incident management, configuration management, change management, and problem management.
• Provide assistance for disaster recovery in the event of security breaches, attacks, intrusions, or other unauthorized activity.
• Provide solutions for RFPs received from clients and ensure overall design assurance.
• Develop a direction to manage the portfolio of future solutions, including systems, shared infrastructure services, applications, and hardware related to cyber risk security to better match business outcome objectives.
• Analyse technology environment, enterprise specifics, and client requirements to set a collaboration design framework and architecture.
• Create complete RFPs based on client needs with particular standards and technology stacks.
• Provide technical leadership to the design, development, and implementation of custom solutions through thoughtful use of modern technology.
• Define and understand current state solutions and identify improvements, options, and trade‑offs to define target state solutions.
• Clearly articulate and sell architectural targets, recommendations, reusable patterns, and propose investment roadmaps.
• Evaluate and recommend solutions to integrate with the overall technology ecosystem.
• Track industry and application trends and relate them to planning current and future IT needs.
• Coordinate stakeholder engagement and audit assistance.
• Liaise with stakeholders regarding cyber security issues and provide timely support and future recommendations.
• Maintain an information security risk register and assist with internal and external audits related to information security.
• Support audits of security best practices and implementation of security principles across the organization to meet business goals, customer, and regulatory requirements.
• Assist with the creation, maintenance, and delivery of cyber security awareness training for team members and customers.
• Provide training to employees on issues such as spam, unwanted, or malicious emails.

Mandatory Skills

• Managed Security Services – MSS.

#J-18808-Ljbffr…