Senior Security Engineer

Job description

  • Perform code security audits
  • Foster security culture across the company
  • Review third-party suppliers for information security requirements
  • Advocate for strong security posture in the company
  • Write and maintain policies and procedures
  • Execute procedures according to schedule
  • Work with auditors, regulators, and other external parties to answer questions about the ISMS and provide necessary artifacts
  • Perform periodic information security training to the whole company and tailored training to individual departments
  • Maintain PCI-DSS and ISO27001 compliance
  • Lead incident response trainings
  • Evaluate risk assessment results and formulate corrective action plans
  • Review information security news for information relevant to the organization
  • Responsible for Company’s information security by preserving confidentiality, integrity, and availability of Company’s information assets and customer data in accordance with Company’s Information Security Management System


Desired Skills and Experience

  • Excellent communication and presentation skills
  • Excellent organizational skills and ability to plan and organize large projects while maintaining day-to-day work.
  • Bachelor’s degree in Computer Science (or equivalent) or higher degree
Preferred, but not required:
  • Knowledge of Ruby and Ruby on Rails, Xamarin, Cordova, .NET
  • Knowledge of AWS and Azure infrastructure solutions
  • CISSP or equivalent