Associate Information Security Engineer

JOB TITLE: Associate Information Security Engineer

DEPARTMENT: Software Development

REPORTS TO: Team Lead

PURPOSE:

The role of an Associate Information Security Engineer is to contribute to the development of high-quality, innovative, and fully secure software solutions that align with established security standards and technical protocols. Associate Information Security Engineers actively participate in application design and development processes while collaborating with team leads (TL) and project managers (PM) to identify and address user requirements, define system functionality, and devise secure solution designs. Associate Information Security Engineers are tasked with implementing secure programming practices across diverse languages, conducting rigorous security testing, mitigating vulnerabilities, and offering ongoing support for production environments.

KEY RESPONSIBILTIES:

• Design and develop scalable, high-performance security services and related frameworks, ensuring robustness against potential security threats and vulnerabilities.

• Assist in leading and mentoring a team of security engineers, providing technical guidance and expertise in implementing secure coding practices and ensuring adherence to security standards.

• Collaborate with product managers, designers, and other stakeholders to define security requirements and deliver innovative security solutions that align with business goals and regulatory requirements.

• Assist in leading and participating in the entire security development lifecycle, from security requirements analysis to deployment and maintenance, ensuring the security posture of the organization's systems and applications.

• Participate in security code reviews, architectural discussions, and sprint planning meetings to ensure security best practices are integrated into the development process, and to mitigate security risks effectively.

• Assist in optimizing and refining existing security controls and frameworks to improve security posture, maintainability, and scalability while adhering to industry best practices and compliance standards.

QUALIFICATIONS, SKILLS AND EXPERIENCE:

• At least bachelor’s degree in Computer Science, Information Technology, or related field.

• 0-2 years of experience is required.

• Excellent communication and collaboration skills.

• Utilize advanced problem-solving for complex technical challenges.

• Participate in implementing ISO27001 Information Security compliance requirements.

• Perform routine review and maintenance on our information security systems.

• Perform review of network monitoring solutions.

• Perform review of critical assets monitoring.

• Work with the ISMS and IT Dept to spot weak points.

• Conduct periodic awareness sessions.

• Proficient in Microsoft Office, ability to multi-task.

• Ability to think critically and propose solution.