The (Senior) Security System Engineer is accountable for the design, setup, maintenance and support of the security-tooling ecosystem. Recommends improvements and support the technical direction and evolution for all relevant elements. From an implementation angle, this entails the engineering, implementing and monitoring of security measures for the protection of any relevant IT asset.
JOB DUTIES
Design, maintain and secure the public key infrastructure ecosystem supporting the management of certificates
Support the end-to-end certificate lifecycle management
Detect, investigate and respond to any relevant operational issues
Implement automation solutions wherever needed (PowerShell and/or alike)
Assist in validation activities relevant to the area of expertise (i.e. new hardware, software upgrades, etc.)
Prepare and present technical presentations to Management
Follow relevant developments within the IT industry
Active identification of new security risk and violations scenarios. Recommend changes to enhance the stability and performance of relevant platforms
Interface with the rest of the organization with the purpose to collect areas of improvement and transform/enrich them in meaningful way
Identify and flag missing pre-requisites for such changes, following up with the Change Builders & Operations teams.
Hold a project management role for the unit. Interface with the technical leads and/or client project managers responsible for major change implementations
Ensure project deliverables are delivered to the quality and schedule committed as per project management plan
QUALIFICATIONS/EXPERIENCE
University degree in computer science or equivalent with at least 5 years of experience in system engineering
Industry certification as CISSP, GCIH, CEH or comparable a plus
ITIL Certification a plus
Project management experience required
Presentation and technical report writing required
Knowledge of relevant platforms and tools required, in particular:
Knowledge of some popular scripting languages (e.g. Powershell, Perl, Python, Bash, AWK)
Good understanding of network and systems architecture
Advanced knowledge of relevant security methods in cryptography, access controls, and protocols
Relevant experience and good knowledge in the field of TCP/IP networking and OSI layers
Knowledge of security threats/risks and their respective mitigations
Good understanding of security and audit standards (i.e. ISO27k, PCI/DSS, SOC1, GDPR)
Self-dependence, pro-activity, willingness to acquire new knowledge
Ability to quickly gain top-level understanding and interact with various subject matter experts
Strong interpersonal skills, tenacity and ability to drive results in a complex, multicultural environment and at different hierarchical levels