Senior Information Security Engineer / Analyst

Job DescriptionJob Description

We are seeking a Senior Information Security Engineer / Analyst with more than six years of experience safeguarding enterprise systems and data. The ideal candidate will have advanced expertise in firewalls, IPS / IDS, vulnerability management, incident response, risk and security assessments, and scripting (PowerShell, Python, VB Script) . This role requires hands-on leadership in SIEM, SOC tools, cloud security, Zero Trust Network Access (ZTNA) , and compliance with industry frameworks such as NIST, CIS, and SOC 2 .

Key Responsibilities

Lead administration of firewalls, IPS / IDS, SIEM platforms, and SOC tools .

Oversee vulnerability management programs and ensure timely remediation.

Direct incident response activities, including investigation, containment, and lessons learned.

Perform and supervise risk assessments and security assessments .

Design and implement Zero Trust Network Access (ZTNA) models.

Manage cloud security controls , encryption technologies, and key management.

Develop and enforce change management and configuration management practices.

Script automation for monitoring, remediation, and reporting using PowerShell, Python, or VB Script .

Ensure compliance with NIST, CIS, and SOC 2 frameworks .

Provide mentorship to junior analysts and collaborate with business leaders on security strategy.

Mandatory Skills

Advanced expertise in firewalls, IPS / IDS, vulnerability management, and remediation .

Strong hands-on experience with incident response, risk assessment, and security assessment .

Proficiency with scripting (PowerShell, Python, VB Script) for automation.

Experience with DevOps security practices .

Strong knowledge of SIEM platforms, SOC tools, and log management .

Expertise in cloud security, encryption methods, and secure architecture .

Proven knowledge of compliance frameworks : NIST, CIS, SOC 2 .

Practical experience implementing ZTNA in enterprise environments.

Desirable Skills

Leadership experience managing or guiding Security Operations Center (SOC) teams / tools .

Familiarity with threat intelligence platforms and advanced detection techniques.

Knowledge of penetration testing, red team / blue team operations .

Experience with disaster recovery and business continuity planning from a security perspective.

Ability to develop security roadmaps and influence enterprise security strategy.

Strong communication and leadership skills to engage both technical and executive stakeholders.