Senior Security Engineer

📋 Description

• Delivers professional expertise to support the achievement and maintenance of security accreditation for CMRE systems and applications, including data acquisition, processing, storage, and their interactions with other CIS throughout the entire lifecycle (development, implementation, operation, enhancement, and decommissioning).

• Within a project framework, provides guidance on cost-effective countermeasures to mitigate security risks anticipated during the development and operational phases of the CIS lifecycle.

• Operates and enforces the required security controls within a security accreditation framework, under the oversight of the CIS Provider and Security Staff.

• Records the architecture, configuration, and security posture of CIS utilized within CMRE to support the risk management efforts of the Security Organization.

• Implements security best practices and controls under the guidance of the CIS Provider.

• Plans, executes, and upgrades CIS as necessary.

• Investigates security incidents to ascertain their root causes.

• Aids in defining, implementing, and sustaining corporate security policies.

• Oversees and manages Technical Teams as required.

• Conducts security testing in line with an agreed Security Testing & Verification (ST&V) Plan.

• Assists the CIS Provider in developing Security Operating Procedures (SecOPs) for the CIS.

• Contributes to maintaining configuration baselines through effective configuration management and change control.

• Aids the CIS Provider in performing periodic vulnerability assessments, under the guidance of Security staff and in accordance with the Security Accreditation Authority's requirements.

• Delivers regular training and awareness sessions for other project personnel.

• Supports periodic security audits conducted by Security Staff and the Security Accreditation Authority.

⛳️ Requirements

• Proven experience in designing or implementing security controls within a structured security management framework (e.g., ISO 27000, NIST SP-800 series, or other national equivalents).

• In-depth knowledge of security systems, including one or more of the following domains: antivirus applications, content filtering, firewalls, authentication systems, vulnerability management solutions, IDS/IPS, DLP, SIEM platforms.

• Experience in supervising technical teams or managing security projects.

• Proficiency in preparing technical documentation and Standard Operating Procedures.

• A minimum of a Bachelor’s degree from a nationally recognized or accredited university in a relevant field (Computer Engineering, Computer Science, etc.) along with 3 to 5 years of related professional experience (junior/senior).

🏝️ Benefits

• Flexible remote work arrangements