Information Security Engineer

Responsibilities

• Serves as the Information Security POC for APAC presence to ensure information systems comply with corporate security practices and policies.

• Provide insight into IT architecture and provide security recommendations.

• Provide incident response for alerts triggered, triaging, containing, and remediating incidents.

• Provide security recommendations for vulnerability management, notifications on emerging threats, and recently announced threats and CVEs.

• Ensure security activities and change management tasks are implemented throughout the SDLC from beginning to end.

• Support development and maintenance of all security documentation such as Incident Response plan, Privacy Impact Assessment, Configuration Management Plan, Disaster Recover, Business Continuity, etc…

• Coordinates with appropriate stakeholders and system owners to ensure proper security controls are implemented and regularly assessed.

Required Experience

• Strong networking background with knowledge of security operations and incident response.

• Experience with SIEM; implementing and auditing rules, analyzing logs and using dashboards and reports to provide actionable data to improve security hygiene.

• Experience with endpoint protection tools triaging, containing, and remediating alerts.

• Experience with web proxy tools from a security perspective.

• Experience creating and updating documentation pertaining to Information Security across the enterprise such as ISO27001, Acceptable Use Policy, Incident Response Plan, DR, BCP, SOP.

• Experience with vulnerability management

• Experience with Change Control Methodologies

• Have knowledge of NIST, ISO27001, MITRE framework, and general security best practices.

• Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences.

• Ability to communicate, both written and oral, to both technical and non-technical stakeholders

• Experience and knowledge of ITIL and how to apply the concepts and practices

Our team is composed of experts in their fields who are passionate about delivering high-quality work and maintaining a positive work culture. We value innovation, teamwork, and personal growth. As an experienced Information Security Engineer, you will have the opportunity to make a significant impact on our projects and contribute to the success of our organization. If you are ready to embrace exciting challenges and foster a culture of excellence, we encourage you to apply.

What do we offer:

• Work remotely from anywhere in the world, with a fully remote team, and enjoy a mutually agreed schedule that fits your needs. 
• Work primarily with US-based colleagues, providing you with the opportunity to collaborate with people from diverse backgrounds and skill sets.
• Use your skills and expertise to make a significant impact on the delivery of projects in our company
• Work in a supportive environment that values your contribution and provides you with the resources and training you need to grow in your career.
• Enjoy a 40-hour workweek that provides you with a healthy work-life balance, and the time to pursue your personal and professional goals outside of work.