Security Engineer

As a Security Engineer at Lunik, you be part of a global team of Cyber Security specialists.  You must possess a very strong understanding of security engineering principles and practices related to an online business, applying them pragmatically in order to strike a balance between protecting our business and our customers, while allowing the organization to get on with doing what it does best.

The Security Engineer has full responsibility for the engineering, management and day-to-day operations of the security systems that protect the organisation’s data and information technology assets.  Responsibilities include:

• Providing engineering services to Cyber Security Operations. Including; proof of concept, design, deployment and maintenance of new technologies, developing research and concepts into operations-ready capability, and ensuring that security tools and functions are properly engineered and supportable.
• Design, implementation, operation and ongoing management of security systems that safeguard data and information assets for the enterprise to ensure solutions and controls are deployed to mitigate internal and external security threats.

As a senior technical expert, you must enjoy working hands-on, operating, designing and building innovative security solutions.

Responsibilities

• Work alongside Cyber Security Analysts to create and maintain appropriate security measures to protect against unauthorised access to electronically stored and/or transmitted information, and to protect against anticipated and cutting edge threats and vulnerabilities.
• Be an integral part of Security Engineering projects and solutions, including design, implementation, and on-going operations of SIEM platforms, firewalls, Suricata IDS, web application firewalls (WAF), Vulnerability Management, Mobile Device Management and Endpoint Security solutions.
• Provide Security Engineering response to Production Incident and Problem investigations, including support the Security On-Call function as required.
• Research new security related technologies and advancement, and identify opportunities for continual improvement, providing recommendations for ongoing improvements to the organisation.
• Maintain detailed sets of documentation for all network and security systems.

Requirements

•  A minimum of 5 years’ technical experience within security engineering / network security
•  Extensive experience and in-depth understanding of the design, deployment and support of security technologies, e.g. Suricata IDS, Vulnerability Management, Authentication and identity management, SIEM, MDM
  Familiarity with industry security configuration standards, such as NIST and CIS
• Must be an intelligent, articulate, consensus-building individual who can serve as an effective member of the Cyber Security team and effectively communicate technical concepts.
• Ability to work closely with a Security Architect over a range of security domains to build, test, deploy and maintain solutions in alignment with organisational objectives.
• Ability to manage multiple concurrent objectives or activities, and effectively make judgments in prioritising and time allocation in a high-pressure environment.
• Ability to manage technical and procedural transformation and adapt to a rapidly changing environment.
• Highly self-motivated and directed, and able to harness different skills and experience, and enjoy a strong sense of team spirit.
• Excellent verbal communication and documentation/technical writing skills.

Non-essential but desirable:

• Experience with Data Loss Prevention platforms, Cloud Security technologies, scripting (primarily Python) and Security Orchestration Automation and Response implementations.
• Degree in Computer Science or equivalent working experience
• Security accreditation (such as GIAC GSEC or CISSP)