Senior Information Security Engineer
Aman -
6th of October, GizaPosted 4 years ago64Applicants for1 open position
- 55Viewed
- 0In Consideration
- 11Not Selected
Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
Key job responsibilities:
- Stay up-to-date on information technology trends and security standards.
- Maintains technical knowledge by attending educational workshops; reviewing publications.
- Investigate security breaches and other cybersecurity incidents.
- Document security breaches and assess the damage they cause.
- Recognizes problems by identifying abnormalities; reporting violations.
- Monitor for attacks, intrusions and unusual, unauthorised or illegal activity.
- Secure digital files and information systems, protecting them from unauthorized access or tampering.
- Work with the security team to perform tests and uncover network vulnerabilities.
- Fix detected vulnerabilities to maintain a high-security standard.
- Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
- Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
- Perform regular internal and external security audits.
- Determine, adapt, and maintain corporate security procedures and policies. meet with stakeholders in relation to cybersecurity issues and provide future recommendations.
- Assist with the creation, maintenance and delivery of cybersecurity awareness training for
- colleagues.
- Develop company-wide best practices for IT security.
- Maintain an information security risk register and assist with internal and external audits relating to information security.
- Determines security violations and inefficiencies by conducting periodic audits.
- Protects system by defining access privileges, control structures, and resources.
Job Requirements
- Exposure to compliance frameworks such as PCI-DSS and ISO 27k.
- Solid understanding of application security vulnerabilities (OWASP Top 10) and countermeasures to reduce related risks.
- Understanding of IPSec tunnels, MPLS-based L3VPN, and reverse proxy concepts.
- Experience or working knowledge of a variety of SAST, DAST and SCA security tools.
- Experience performing thorough threat modelling and application security architectures reviews.
- Ability to perform source code reviews and identifying security issues in code particularly within Java apps (C is a plus).
- Experience working with common product flows like payment gateway integration and authentication a plus.
- Experience or working knowledge with JIRA, GitLab and SonarQube a plus.
- Experience testing mobile and API (REST and SOAP) applications a plus.
- Understanding of Android Internals and SDK architecture a plus.
- From 2-3 years of experience.