IT Security Engineer

Position Overview

The IT Security Engineer will be responsible for designing, implementing, and managing comprehensive security measures to protect HAECO’s IT infrastructure, applications, and data. This role requires expertise in security best practices, threat analysis, incident response, and compliance with industry standards and regulatory requirements. The IT Security Engineer will collaborate closely with IT and development teams, external vendors, and partners to enhance security measures and address potential threats. Additionally, this role involves conducting regular security testing, promoting user security awareness, and providing guidance and support to other IT staff on security-related matters.

Essential Duties

• Design, implement, and manage security solutions to protect the organization’s IT infrastructure, applications, and data.
• Develop and maintain security policies, standards, and procedures to ensure compliance with industry best practices and regulatory requirements.
• Conduct risk and vulnerability assessments, monitor security systems for breaches, and respond to incidents with detailed analysis and remediation.
• Configure and manage security tools, such as firewalls, IDS/IPS, antivirus software, and encryption solutions.
• Stay updated with the latest security technologies and trends, recommending and implementing improvements.
• Conduct regular security testing, including penetration testing and vulnerability scanning.
• Ensure compliance with relevant regulations and standards and assist with audits and compliance reviews.
• Collaborate closely with IT and development teams to integrate security practices into the software development lifecycle and infrastructure.
• Work with external vendors and partners to enhance security measures and address potential threats.
• Promote user security awareness and manage end-user training.
• Provide guidance and support to other IT staff on security-related matters.
• Maintain detailed documentation of security configurations, procedures, and incident reports.
• Occasionally travel as required and perform other duties and special projects as assigned.

What you need: (Requirements)

Minimum

• Minimum 3 years of experience in an IT Security role.
• Strong knowledge of security protocols, encryption, and authentication mechanisms.
• Hands-on experience with security tools and technologies, including firewalls, IDS/IPS, and SIEM systems.
• Familiarity with operating systems (Windows, Linux) and network security concepts.
• Proven experience in threat analysis, incident response, and vulnerability management.
• Relevant certifications such as CompTIA Security+, CISSP, CEH, CISA, CCSP, GIAC, or OSCP
• Advanced problem-solving and troubleshooting skills, with the ability to develop effective long-term solutions to complex problems.
• A solid understanding of endpoint/network defenses and security incident response.
• A deep understanding of the various technologies, services, and specifications that comprise and enterprise network.
• Excellent attention to detail and the ability to deliver within assigned timelines.
• Ability to set priorities and accomplish tasks with minimal supervision.
• Must be willing to support a 24 x 7 production environment (emergency on-call).
• Ability to work independently as well as in a team environment.
• Excellent oral and written communications skills.

Preferred

• A bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
• Five (5)+ years in an IT Security role.
• Experience with cloud security and technologies, including AWS and Azure
• Experience with DevSecOPs practices and tools.
• Experience in conducting research and identifying methods to detect emerging cyber threats, attack methods, and evolving Tactics, Techniques, and Procedures (TTPs) with a focus on phishing and/or cybercrime.
• Strong background in data analytic techniques, including machine learning, statistics and data mining to solve core business challenges.
• Comprehensive knowledge of a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, and vulnerability management.
• Prior work experience implementing security standards and procedures.
  
  

Physical Requirements

• Normal mental and visual attention with manual coordination for keyboard operations approximately 50% of the time
• Normal or corrected hearing and vision required
• Must be able to lift 50 lbs
• Must be able to work in a stressful, face-paced environment