Security Engineer

We are looking for an Security Engineer to assess and implement security controls and processes related to our IT infrastructure. The Infrastructure Security team’s mission is to remediate vulnerabilities to reduce the impact of threats towards the clients infrastructure and assist in building secure solutions.

They will contribute to successful vulnerability management through verification and remediation (aka Updating software with the latest security patches and ensuring the proper defenses are present for each network resource).

As an experienced Security Engineer, brings a security mindset and is passionate about using the latest security technologies to empower the organization. As a Security Engineer in the clients Infrastructure team, you will have a high degree of involvement in developing standards and procedures for operating infrastructure security. You’ll be working in a global cross-functional environment with many different stakeholders.

Responsibilities include:

- Install, administer, and troubleshoot endpoint, network, and cloud security solutions.

- Contribute to successful vulnerability management through analysis and remediation.

- Consult with staff, managers, and executives about the best security practices and providing technical advice.

- Implement and maintain Security baselinesincluding operational and technical aspects.

- Work closely with the SOC, other security teams, and Infrastructure teams in daily operation and implement security requirements.

- Implement new and maintain existing security measures.

- Contribute to creation of procedures, guidelines, and other documentation.

- Keep up with the latest technologies and developments, as well as their implications on cyber security.

- Foster a proactive infrastructure security environment.

Key aspects of the role:

- Vulnerability management, patching

- Background in infrastructure

- We are a Microsoft shop

- Look for vulnerabilities, close the gaps (in collaboration with SOC and general infrastructure)

- Scripting, automation is key

- Operations mindset vs. Security mindset

- The role is hands on (versus architecture or consulting)

- Has nothing to do with Penetration Test, responsibility is to ensure security initiatives are being performed, somewhat repair the past (apply fixes), more operational

- Settle the role, solidify initial priorities, make relationships and introductions, settle process and communications flow.

Relevant certifications:

GSEC, CompTia Security+, SANS SEC401

Please note that some travelling throughout European locations of the client may be required



Requirements:

The client is looking for candidates that are willing to work for half a year as external consultants and hereafter are willing to be converted to the clients employee.

Preferred experience, skills:

- Security mindset - understand implications and importance of responsibilities

- 2+ years' experience working as a security engineer in infrastructure.

- Strong process and framework mindset (such as ITIL, COBIT)

- Experience with cloud services

- Experience working in a global team

- Proficient in both written and spoken English.eu