Security Engineer

About the position

Responsibilities

• Identification and analysis of business problems and client requirements that require change within the organization.
• Development of business requirements that will address business problems and opportunities.
• Collaboration with stakeholders to ensure that proposed solutions meet their needs and expectations.
• Support the creation of business cases that justify investment in proposed solutions.
• Conduct feasibility studies to determine the viability of proposed solutions.
• Support the creation of reports on project progress to ensure proposed solutions are delivered on time and within budget.
• Creation of operational design and process design to ensure that proposed solutions are delivered within the agreed scope.
• Support to change management activities, including development of a traceability matrix to ensure proposed solutions are successfully implemented and embedded in the organization.
• Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues.
• Identify ways to mitigate risk and develop new policies/procedures in support of the control and governance agenda.
• Take ownership for managing risk and strengthening controls in relation to the work done.
• Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organization sub-function.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy.
• Engage in complex analysis of data from multiple sources of information, internal and external sources to solve problems creatively and effectively.
• Communicate complex information to stakeholders and influence them to achieve outcomes.

Requirements

• Proven history of supporting and leading security services at an enterprise scale.
• Knowledge of Endpoint Detection and Response tools, such as Microsoft Defender for Identity (MDI), Microsoft Defender for Endpoint (MDE), CrowdStrike, KQL, Alert Tuning, and Custom Detection Rules for MDE and MDI.
• Strong knowledge of Active Directory and Domain Controllers.
• Strong knowledge of security network architectures including Firewalls, DMZ, proxies, DNS, web and mail servers, and networking principles.
• Relevant professional certifications in information technology or cloud security (e.g., SC200, Az500).
• Experience working with and supporting *nix and Windows server platforms.
• Ability to work in remote teams, set and control own workload, and lead and mentor others.
• Technical knowledge of the Cybersecurity ecosystem and tooling.
• Basic/Intermediate level of scripting/coding ability (e.g., Python, PowerShell) in the context of automation programmatic operation of tools.

Nice-to-haves

• Experience with Microsoft Defender (MDI) and Microsoft Defender for Endpoint (MDE).