Security Engineering Job Description
Security Engineering Duties & Responsibilities
To write an effective security engineering job description, begin by listing detailed duties, responsibilities and expectations. We have included security engineering job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Engineering Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Engineering
List any licenses or certifications required by the position: CISSP, SSL, CISM, TLS, SAML, SSO, AWS, VSX, X.509, PKI
Education for Security Engineering
Typically a job would require a certain level of education.
Employers hiring for the security engineering job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Information Security, Information Systems, Business, Management, Leadership, Information Technology, Architecture, Communication
Skills for Security Engineering
Desired skills for security engineering include:
Desired experience for security engineering includes:
Security Engineering Examples
Security Engineering Job Description
- Working with colleagues in other technology departments the business and product offices to establish effective, productive business relationships
- Monitor all Security Response Center, National NOCs and Local Management Centers events to identify security issues or respond to automated event identification
- Develop, execute, and maintain security incident management procedures for large ISP network and systems
- Investigate opportunities to update security system capabilities or perform policy updates based upon system performance reports and observed incidents or threats
- Perform configuration updates, such as modifying configurations, signature definitions or implementing new policies on various security tools, as directed
- Be able to leverage other network management tools used by the National Operations Centers or Local Management Centers in the identification and response to security incidents and faults
- Assist with daily virus, vulnerability and exploit assessment review
- Assist with security compliance audits to verify completeness of security required configurations and verify system hardening
- Participate in the post-mortem investigation of catastrophic network security incidents and prepare security incident reports documenting the findings
- Manage team of security engineers and technical program managers
- Expert knowledge (10+ years) of leading agile software development efforts and delivery of enterprise software business solutions
- Strong background in Security and related areas around Virtualization & Cloud
- Team player, strong drive, self-starter, willing to take leadership role in driving initiatives, working well across organizations, and structuring approaches to new opportunities
- Demonstrated success in managing distributed development teams
- Demonstrated success in design, implementation, and ongoing management of APIs (documenting them a plus)
- Demonstrated success in architectural planning
Security Engineering Job Description
- Develops and leads the Security and Engineering team to ensure a well-defined program operates and identifies coverage areas and assesses risk
- Leads NXP Automotive Microcontroller and Processor (AMP) strategy and deployment for automotive embedded security
- Establish and own technical vision and architectural approaches for embedded security in next generation AMP products
- Overall accountable for embedded security in all AMP products brought to market
- Manages team of security experts, actively engaged in standards bodies
- Evangelize the embedded security approach across organizational boundaries and with senior management
- Security System Support
- Recommend, test, and validate complex security solutions
- Provide complex technical oversight, support, and enforcement of security directives, policies, standards, plans, and procedures
- Designs and implements security engineering solutions that adhere to the firm’s security standards and architectural guidelines serving the needs of clients (Vulnerability Threat Management or Security Event Center)
- Must have solid administrative experience with Linux/Unix and Windows operating systems
- Bachelors of Science in Computer Science (Masters preferred), or equivalent experience
- Prior experience working in a high-growth or startup company preferred
- 5+ years experience in Shell scripting or programming in Perl, Java, .net, Python and having experience in SQL & PL/SQL development
- Experience with large complex networks, company acquisition integration desired
- A proven ability to establish and sustain effective, professional relationships with business managers
Security Engineering Job Description
- Creates strategic emerging technology roadmap outlining desired future state risks associated with changes
- Aggressively and boldly automate, with data-driven confidence
- Provides the authoritative sign-off of new solutions and technology in the global architecture review, international design review, firewall approval and other change and project governance processes
- Consults with key stakeholders on client and internal requirements, projects and proposals, Payment Card Industry (PCI) interpretations, audit responses and new business opportunities
- Designs and develops secure IT solutions and control frameworks using network segmentation, gateway security, specialist security tools (e.g., event monitoring, data loss, vulnerability and malware protection, code review, app firewall)
- Engages and consults with executive and senior leaders to align security programs with strategic business goals and tactical initiatives
- Directs and leads complex security and internal fraud incident response investigations, and coordinates resources the company, client, vendors and business partners
- Directs communication with internal counterparts to set priorities for enhanced security and risk reporting
- Directs processes for governing the submission, processing, maintenance, and submission to external assessors, and for the retention of PCI compliance evidence across all divisions and business segments in accordance with PCI evidence standards, records retention policies, and corporate security policies
- Provides expert support and guidance and acts as the enterprise contact for the PCI Security Standards Council (PCI SSC)
- Knowledge or experience with network based security mitigation systems or tools
- Bachelor’s Degree in Computer Science or related technical field experience or 10+ years of professional management experience
- Bachelor’s Degree in Computer Science or related technical field experience or 10+ years of equivalent professional experience
- Familiarity with regulatory and compliance initiatives including GLBA, PCI-DSS, SSAE16, , preferred
- Virtualization and Cloud
- Email Data Loss Prevention
Security Engineering Job Description
- Mentor other Security Operations (SecOps) members in multiple disciplines such as hacking, scripting and programming
- Operationalize third party tools and technology, including monitoring, alerting and reporting
- Connect third party tools and APIs to internal systems for control and reporting
- Create and maintain tools to automate or assist functions of SecOps
- Consult and advise, bridging Security Architecture and Security Engineering
- Improve reporting capabilities within SecOps
- Improve performance of various security tools
- Be a leader in the expansion and growth of the SecOps
- Interact with outside teams and speak knowledgably about various topics such as firewall configurations, networking principles, Linux system administration
- Provides project management support and reporting, including identification and management of project issues and risks, assistance with design mockups, performing benchmark analyses, managing demand and analyzing project data
- Work autonomously on high profile, complex and/or high risk technology initiatives with significant impact to the organization
- Expertise in assessing and selecting security tools and solutions that best meet the stated Security need at the Bank
- Extensive related work experience in building complex Security Engineering Infrastructure solutions with the ability to be a key contributor in a complex and critical environment
- Experience with security regulatory / compliance requirements including PCI and SOX
- Ability to transfer knowledge to fellow team members
- Ability to make engineering design decisions, efficiently build solutions, solves technical problems, and makes improvements to our systems
Security Engineering Job Description
- Lead and manage implementation of security solutions
- Mentors, coaches, and trains members of the information security team, the broader information technology services team, and other technologists throughout HBC
- Coordinate closely with the Information Security Program Management team to provide regular metrics and reporting to measure the efficiency and effectiveness of the services, facilitate appropriate resource allocation, and increase the overall maturity of related security capabilities
- Manage the budget and projects associated with security architecture and engineering to invest resources to efficiently reduce risk
- Work with other Cyber Security teams to effectively and efficiently manage security monitoring, sensor enrichment and tuning
- Plan and Manage department budgets
- Plan and position a solution within the company to effectively gain consensus from all stakeholders and lead the execution
- Construct business case, cost estimates, Return on Investment (ROI) and successfully communicate solution to business
- Establish credibility throughout the organization by earning the reputation for being a dedicated senior leader and change agent
- As Functional Lead, you will be a hands-on player and a coach
- Non-financial (customers/staff )
- A proven ability to establish and sustain effective, professional relationships with Technology and Business
- University degree or equivalent in IT discipline
- Real passion for Security and Availability
- Familiarity with open source projects and open source community resources
- Practical use of protocols utilized within an enterprise management system (SNMP, SSH)