itpro.lk

applicants

ITX360 (Pvt) Ltd, subsidiary of Expolanka Holdings Limited is a technology solutions company focused on providing both local and international markets with 360° innovative enterprise solutions and services in automation, Cloud, ERP. Network and Systems Infrastructure, Software development, Information security and managed IT across all industries for any scale of business. We are seeking a highly skilled and motivated Information Security Engineer to join our team. The ideal candidate will have a strong background in cybersecurity, proven experience in managing and implementing complex security solutions, and a passion for safeguarding information systems.

Requirements

• Bachelor's degree in Computer Engineering, Cybersecurity, Information Security, Information Systems, or an equivalent qualification
• Proven expertise in key cybersecurity technologies such as DLP, Network Security, Endpoint Security, SIEM, EDR, etc.
• Hands-on experience with ISO 27001, ISO 22301, and other security standards
• Proficient in conducting Vulnerability Assessment and Penetration Testing (VAPT)
• Ability to work independently and mentor junior team members
• Strong analytical and problem-solving skills in cybersecurity incident response and management
• Minimum 05 years of hands-on experience implementing and supporting complex security solutions
• Professional certifications and hands-on experience with multiple security vendor technologies (eg. Cisco, Fortinet, Palo Alto, Microsoft, etc.) are an added advantage
• Ability to multi-task and perform under pressure
• Excellent communication skills in English, both written and verbal
• Age below 35 years

Job Role

• Manage and respond to information security incidents
• Perform vulnerability assessments and penetration testing
• Evaluate and test security products, and lead proof-of-concept (PoC) implementations
• Maintain and enhance compliance with ISO 27001, ISO 22301, and other relevant standards
• Design and implement security solutions using the latest technologies
• Ensure internal and customer networks adhere to industry best practices
• Develop and update security policies, procedures, and standards
• Investigate security breaches and recommend appropriate corrective actions
• Maintain strong cyber hygiene across the organization's infrastructure
• Conduct security awareness training for staff and internal teams
• Prepare and present security reports to senior management
• Meet and exceed monthly and quarterly sales goals and KPIs