SUMMARY:
Mid-Tier Security Engineer
POSITION INFO:
JOB PURPOSE STATEMENT
The Mid-Tier Security Engineer is responsible for ensuring robust cybersecurity operations, proactive threat detection, and effective risk management. This role involves collaborating with IT and security teams, conducting vulnerability assessments, and implementing security best practices to protect organizational assets. This role demands knowledge of driving cutting-edge security technology and operations platforms from Microsoft, Fortinet and Sophos.
KEY DELIVERABLES
|
Key Performance Area: |
Duties: |
- 1. Stakeholder Collaboration and commnication
|
- Work closely with IT and Security teams to enhance security.
- Maintain clear communication via collaboration tools. (Teams, CRM, Service Desk).
|
- 2. Continuous Improvement & Compliance
|
- Stay updated with the latest security threats, technologies, and best practices.
- Conduct vulnerability audits to ensure compliance with industry standards and regulatory requirements.
- Research and recommend innovative security solutions to enhance organizational resilience.
|
- 3. Security Operations, Threat Detection & Incident Response
|
- Real-time threat monitoring, detection, and response operations.
- Ensure security operations align with industry best practices and compliance standards.
- Conduct incident response efforts, from detection to resolution.
- Maintain up-to-date documentation for internal security measures and client security operations.
- Conduct security assessments, including M365 tenant evaluations and network reviews.
- Manage Security Posture management for customers as per contractual requirements
|
- 4. Threat Hunting & Vulnerability Management
|
- Proactively identify and mitigate cybersecurity threats before they escalate.
- Analyse network traffic, endpoint activity, and security logs to detect advanced threats.
- Manage vulnerability assessments and ensure timely remediation of security weaknesses.
- Utilize industry-leading SOC SaaS platforms (e.g., Microsoft Defender, Fortinet, Sophos) to strengthen security defences.
- Provision of remediation assistance
|
- 5. Prevention and Risk Management
|
- Design and implement proactive security measures to prevent cyber threats.
- Manage identity and access controls, email protection, data security, and endpoint security.
- Conduct IT risk assessments and recommend mitigation strategies.
- Ensure proper security configurations across operating systems, networks, and applications
|
- 6. Key Performance expectations
|
- Working in the office at least three days per week.
- Achieve and track own billable work hours, CRM tasks and project milestones.
- Begin with the end in mind. Ensure all work completed is aligned with achieving specific deliverables as outlined in project plans or service level agreements
- Ensure prompt response to requests, security incidents and escalations.
- Keep security documentation and reports up to date.
- Drive own accountability, ensuring all tasks and security measures are executed effectively.
- High levels of customer satisfaction and retention
- Ensure all risks are highlighted and communicated
- Comitment to continual professional development
|
JOB REQUIREMENTS:
- Minimum of 3 years of experience in Information Technology and 1 years in Cybersecurity
- Proven experience in progressively responsible technical roles, including leadership positions
- Strong technical and analytical skills
- Excellent problem-solving and critical-thinking skills
- Excellent communication and interpersonal skills
- Able to work as part of a team and independently
- Knowledge of best practices and secure design principles
- Able to work effectively in stressful situations
- Open minded to personal growth and development
- A “can do now” mindset
