itpro.lk

• IT and General
• Software Development
• Quality Assurance
• Mobile Development
• Design and Creative
• Management and Business
• AI and Data
• Digital Marketing
• Web Development
• Hardware and Networking
• Academic
• Internship

• Companies
• Subscribe

Be the first to apply!

Senior Engineer - IT Security

Job Profile

The selected candidate will be responsible for,

• Monitor and analyze security events across various controls, including SIEM, Firewall, EDR, WAF, application, and system logs, to identify threats, trends, and potential risks to the organization.
• Administer the SIEM solution by onboarding log sources, developing enhanced detection rules and capabilities, and focusing on automating defense mechanisms where possible.
• Triage and respond to reported security incidents and requests, ensuring they are appropriately prioritized and remediated.
• Engage in proactive threat hunting to identify targeted threats and suspicious activities.
• Guide the team in remediating vulnerabilities and track progress effectively.
• Research and introduce new tools and techniques to address emerging threats, enhancing the security posture of the organization.
• Stay updated on the latest security threats, advisories, alerts, and vulnerabilities, and initiate appropriate mitigation controls.
• Lead the implementation of new IT security projects identified by management.
• Assist in the development and enforcement of IT policies, procedures, and standards.
• Execute compliance and regulatory requirements as defined by bodies such as PCI DSS, ISO 27001, CBSL, SWIFT, and NIST CSF.
• Participate in compliance, regulatory, and management-initiated audits, providing timely responses to audit observations.

Applicant's Profile

• Bachelor's degree in information technology, Computer Science, or a related field specializing in Information Security or Cybersecurity.
• IT and security-related certifications such as CEH, ECIH, CSA+, eJPT, eCIR, SSCP, ISACA CSXP, or GSEC are highly desirable.
• 3-5 years of proven experience as an Information Security Engineer who has demonstrated experience in managing and responding to security incidents.
• Proficiency in scripting languages such as PowerShell, Python, and Bash. Strong understanding of frameworks such as MITRE ATT&CK and D3 FEND.
• Comprehensive knowledge of network applications, protocols (TCP/IP, HTTP, TLS, SSH, DNS), and their security implications.
• Familiarity with security technologies including Firewalls, EDR, SIEM, IPS/IDS, WAF, and MDM.
• Hands-on knowledge of Windows and Linux environments.
• Understanding of regulatory and compliance requirements, including PCI DSS, ISO 27001, NIST CSF, CBSL, and SWIFT.
• Excellent verbal and written communication skills to effectively manage relationships with internal and external stakeholders.
• Strong attention to detail with a commitment to maintaining high ethical standards.

Apply now to careers@cbctechsol.com to embark on an exciting career journey!!

CBC Tech Solutions Limited is an equal opportunity company. Our selection décisions are based solely on evidence of suitability demonstrated throughout the selection process, and not influenced by race, gender, marital status, disability, age, religious belief, or sexual orientation.