Overview:
We are searching for a Senior IT Security Engineer with a proven track record of handling complex security environments. The Senior IT Security Engineer is responsible for installing, managing, and maintaining firewalls, intrusion prevention or detection systems, log management, and antivirus servers, as well as network systems to ensure the stable operations of TEK’s IT security infrastructure. The Senior IT Security Engineer will also research, recommend and build reliable and appropriate improvements to the security infrastructure and ensure the integrity and stability of data as well as the VPN connection of internal network and partner’s access.
The role will operate within the IT business unit under the Global IT Operations Manager.
Driving exceptional outcomes with purpose-built solutions.
Tek Experts is a tech services and support company focused on delivering specialized and unique solutions for clients. We’re problem solvers, engagers, and creative thinkers who always strive to help our customers succeed. Our agile, relationship-based support helps the largest, most innovative enterprises thrive. If you crave problem-solving, finding improvement in process, learning, and working within a diverse global team, you're the fit we're looking for. Join our global team of experts and grow your IT career with us.
Tek Experts is part of Te Knowledge – where innovation meets purpose. We’re transforming the tech landscape globally, delivering advanced technology services, cybersecurity expertise, and unmatched technical skilling, tailored to the unique landscapes of public and private sectors.
Responsibilities:
This role will:
- Research, recommend and build reliable and appropriate security infrastructure for the IT department.
- Utilize security products and components to balance effectiveness, vendor lock-ins, and costs.
- Analysis, design, administration, and monitoring of security controls for network, applications, and data in accordance with organization security, privacy, and compliance policies.
- Coordinate and supervise IT Security Engineers at other sites to resolve problems and faults.
- Administer security products and devices while keeping supported security infrastructure in great working and functional condition.
- Actively participate in security vulnerability assessment and incident response procedures.
- Protect customer data and cover network security risks for the infrastructure environment.
- Follow change control management while implementing system changes, upgrades, and updates.
- Provide Technical support for other teams within the organization, ensuring all IT Global policies/standards and procedures are in place.
- Conduct and provide Weekly and Monthly Security checklists and reports.
- Produce quality documentation to reflect changes and new implementations.
- Maintain safety standards in the working environment that comply with TEK and partner’s HSSE standards, ensuring that all servers and workstations are protected by the latest security measures.
- Ensure business continuity through capacity planning for system upgrades, full understanding of the Disaster Recovery Plan (DRP), maintaining compliance with TEK’s global DRP, joining the project team for DR Exercises, and acting as a Technical Representative at the site for solving Crisis problems.
Qualifications:
In this role:
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or another related discipline.
- Professional fluency in English is essential, both written and spoken.
- CCNA certification/higher or relevant experience/knowledge is a requirement, while other security certifications – Comp TIA Security+, CEH, CISSP, GCIH, OSCP, or related are an advantage but not required.
- ITIL v3 or ISO20000 experience is an advantage but is not required.
- Extensive knowledge and experience with network security solutions (VPN, NGFW, DMZ, IPS, URL/Content filtering, Thread Defense/AMP): NG Firewalls - Cisco, Palo Alto Networks; Firewalls - NAT/Access Control Policy rules – vendor-independent; Switches/Routers/Firewalls – Access Control Lists, SSL and IPsec VPN technologies.
- Knowledge and experience with AV, Logging, and Monitoring solutions: Endpoint Security – Mc Afee, Microsoft Defender for Endpoint; SIEM solutions – logging/reporting.
- Experience with security hardening techniques and methodologies applicable to any vendor platform and operating system.
- Knowledge of security vulnerability assessment and penetration testing technologies – Nessus Tenable/Kali Linux.
- Virtualization – general knowledge/concept, basic experience in provisioning/administration with VMware ESX.
- Linux OS: Ubuntu/Debian and Red Hat/Cent OS management and configuration.
- Strong network skills - knowledge of network devices, LAN/WAN concepts, data transmission, OSI model, routing, and switching protocol stack.
- General overview knowledge of Active Directory – GPO objects, User/Group/Password management.
- Microsoft Office 365 Security applications – Exchange, Azure, Threat Analytics, WAF (or alternatives from other vendors).
- Experience in IT Service Management for Incident, Change, and Configuration Management, supervising security incidents/changes/configurations, and cyber threat prevention from intrusions like viruses, malware, and phishing.
- Knowledge and experience in a cloud-based infrastructure.
- Ability to learn, test, and evaluate new security technologies, systems, and services.
- Excellent crisis management, troubleshooting, analyzing, and investigation skills.
- Capable of being self-managed, self-driven and self-initiative.