Senior Security Engineer

Job Summary :

We are seeking a highly skilled Senior Security Engineer to join our growing Security team.

The ideal candidate will be responsible for designing, implementing, and maintaining robust security controls across both cloud (AWS, Azure, GCP) and on-premises environments.

This role will focus on applying and auditing CIS Benchmarks to ensure hardened configurations for network infrastructure, security appliances, and supporting servers critical to network and security services.

The Senior Security Engineer will play a critical role in safeguarding our systems, automating security operations, and collaborating with cross-functional teams to embed security into every layer of our technology stack.

Key Responsibilities :

- Implement, audit, and maintain CIS Benchmark compliance across network devices, security platforms, and supporting servers tied to network services.

- Lead efforts in network and cloud security operations, including firewalls, IDS/IPS, IAM, and vulnerability management.

- Develop and maintain automation scripts (e.g., Python, PowerShell, Ansible, Bash) to enforce, monitor, and remediate security controls at scale.

- Conduct regular compliance audits, configuration reviews, and risk assessments to identify and mitigate vulnerabilities.

- Provide technical leadership in incident response and root cause analysis for security events.

- Monitor evolving threats, compliance requirements, and best practices to continuously strengthen security posture.

- Create and maintain documentation, playbooks, and hardened configuration baselines for internal and regulatory requirements.

Required Qualifications & Skills :

- Bachelors degree in Computer Science, Information Security, or related field, or equivalent practical experience.

- 4-6 years of hands-on experience in security engineering roles covering network and cloud environments.

- Cloud security (AWS Security Groups, Azure NSGs, GCP Firewall Rules, IAM policies).

- Network security (firewalls, IDS/IPS, VPNs, segmentation).

- CIS Benchmarks application for network equipment and supporting infrastructure servers.

- Identity and Access Management (IAM) principles and technologies.

- Vulnerability management tools and processes.

- Strong scripting and automation skills in at least one language (Python, PowerShell, Ansible, Bash).

- Familiarity with compliance frameworks (PCI-DSS, SOC2, HIPAA).

- Strong analytical, troubleshooting, and documentation skills.

Preferred Qualifications :

- Professional Cloud Security Engineer, preferred holding Professional certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, GCP.

- Working knowledge of additional frameworks such as NIST CSF, ISO 27001, or MITRE ATT&CK.

- Experience with SIEM/SOAR platforms, compliance automation, and cloud-native security tools (e.g., Prisma Cloud, Defender for Cloud, Security Hub).

- Demonstrated ability to mentor junior engineers and provide technical leadership.