Senior IT Security Engineer

We are looking for an experienced IT Security Engineer to support the design, delivery, and assurance of cyber-secure solutions for mission-critical, government and defence-grade systems. This role partners closely with engineering and project teams to ensure security is embedded by design and compliant with international security standards and certifications.

You will contribute to security architecture, risk management, audits, and secure system integration across complex, high-assurance environments.

Key Responsibilities

• Act as the security partner to project and engineering teams across bids and delivery phases

• Define and implement security requirements for critical systems and infrastructure

• Perform security risk assessments, threat analysis, and mitigation planning

• Support government / defence / regulated projects with high security and compliance needs

• Provide security input for proposals, tenders, and customer security reviews

• Conduct security audits, gap assessments, and compliance reviews

• Support secure system integration and verification against security requirements

• Advise on and implement security controls such as firewalls, endpoint protection, SIEM, IAM, and MFA

• Support operational security activities including incident handling, patching, and access control

Required Experience & Skills

• Degree in Computer Science, Information Technology, or equivalent

• Minimum 5 years of experience in IT / Cyber Security

• Hands-on experience in at least two of the following domains:

  • Application Security

  • Network Security

  • System / Infrastructure Security

  • Data Security

  • Cloud Security

• Experience working on large-scale, high-criticality systems (government, defence, regulated environments)

• Excellent stakeholder communication and consulting skills

• Comfortable working in international and cross-functional teams

• Ability to work under time-critical and high-assurance project conditions

Technical Expertise

• Practical experience with firewalls, IDS/IPS, endpoint security, IAM/PAM, SIEM

• Solid understanding of TCP/IP, networking protocols, virtualization, and system hardening

• Ability to write basic scripts (Shell, Python, or similar) for automation and administration

• Exposure to vulnerability assessment and penetration testing is a plus

Security Standards & Compliance (Core Focus)

Excellent knowledge and hands-on exposure to security frameworks and standards such as:

• ISO/IEC 27001

• NIST Cybersecurity Framework / SP 800 series

• Common Criteria

• IEC 62443 (Industrial / Critical Systems Security)

Professional Certifications (Highly Valued)

One or more internationally recognised security certifications:

• CISSP - Certified Information Systems Security Professional

• CISA - Certified Information Security Auditor

• OSSTMM Professional Security Tester (OPST)

• CREST Practitioner Security Analyst (CPSA)

  
  
  EA License : 02C3423

  EA Personnel : R22108699