Senior Security Engineer

Job description

  • Perform code security audits
  • Foster security culture across the company
  • Review third-party suppliers for information security requirements
  • Advocate for strong security posture in the company
  • Write and maintain policies and procedures
  • Execute procedures according to schedule
  • Work with auditors, regulators, and other external parties to answer questions about the ISMS and provide necessary artifacts
  • Perform periodic information security training to the whole company and tailored training to individual departments
  • Maintain PCI-DSS and ISO27001 compliance
  • Lead incident response trainings
  • Evaluate risk assessment results and formulate corrective action plans
  • Review information security news for information relevant to the organization
  • Responsible for Company’s information security by preserving confidentiality, integrity, and availability of Company’s information assets and customer data in accordance with Company’s Information Security Management System

 

Desired Skills and Experience

Required:
  • Excellent communication and presentation skills
  • Excellent organizational skills and ability to plan and organize large projects while maintaining day-to-day work.
  • Bachelor’s degree in Computer Science (or equivalent) or higher degree
Preferred, but not required:
  • Knowledge of Ruby and Ruby on Rails, Xamarin, Cordova, .NET
  • Knowledge of AWS and Azure infrastructure solutions
  • CISSP or equivalent