Security Operations Engineer

Job Summary

Our client is looking for a candidate to lead and support cybersecurity operations, incident response, vulnerability management, security audits, and service delivery, ensuring a secure and reliable environment through collaboration with IT teams and vendors.

Responsibilities

• Monitor, maintain, and support cybersecurity systems including security tools, firewalls, antivirus platforms, and intrusion detection/prevention systems to ensure continuous protection.
• Identify, investigate, and respond to security incidents by performing first-level troubleshooting, escalating issues appropriately, and documenting incident details.
• Liaise with technology vendors to escalate incidents, obtain technical support, and resolve security issues efficiently.
• Conduct regular vulnerability assessments and support patch management activities to maintain system security and compliance.
• Gather logs, prepare reports, and maintain evidence to support security audits and compliance verification.
• Ensure operational activities comply with cybersecurity best practices, internal procedures, and relevant regulatory requirements.
• Collaborate with IT teams, network engineers, and stakeholders to implement security measures aligned with operational needs.
• Maintain clear, detailed documentation of security procedures, incidents, operational activities, and the cybersecurity environment.
• Lead or support a team of engineers to execute Day 1 and Day 2 operational functions effectively.
• Support reliable service delivery within managed services and security operations environments to meet service level objectives.

Required competencies and certifications

• Diploma or Degree in Information Technology, Computer Science, Engineering, or equivalent discipline.
• Minimum 5 years of experience in cybersecurity maintenance, IT security operations, or related security operations roles.
• Proven experience leading or coordinating technical engineering teams.
• Practical experience maintaining cybersecurity systems and supporting operational security activities.
• Experience in at least one cybersecurity domain such as endpoint protection, network security, or identity and access management.

Preferred competencies and qualifications

• Professional certifications in cybersecurity solutions.
• CISSP certification or equivalent cybersecurity certification.
• Operational experience in container security and key management.
• Experience with security tools including firewalls, antivirus software, IDS, IPS, vulnerability assessment tools, and patch management processes.
• Experience supporting managed services, security operations, IT operations, or cybersecurity maintenance environments.