Security Engineer Tier 3

**Company Overview**

REST Solution offers a full range of outsourced IT support and cybersecurity services at a fair price. We are committed to help companies scale and grow by streamlining IT operations, minimizing downtime and improving productivity. In the process, we also help companies save costs and plan for their IT expenses. We proudly offer exceptional customer service that goes beyond mere delivery of IT support.

Our engineers go the extra mile to enable you to reach your business goals with ease.

**Job Summary**

As a T3 Security Engineer, you will be responsible for leading and managing complex security initiatives, designing, and implementing security controls, conducting advanced threat analysis, and providing expertise in security operations.

Your deep knowledge of cybersecurity technologies, frameworks, and industry best practices will be crucial in ensuring the protection of our organization's systems, networks, and data.

**Duties and Responsibilities**
- Lead and oversee the design, implementation, and management of enterprise-wide security solutions, including EDR, firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, data loss prevention (DLP), and security information and event management (SIEM) tools.
- Assess and enhance the security architecture, providing recommendations for improvements and ensuring alignment with industry best practices.
- Lead and manage complex security incidents, conducting in-depth analysis, and providing strategic recommendations for containment, eradication, and recovery.
- Conduct advanced threat analysis, hunting and intelligence gathering, proactively identifying and mitigating security risks and vulnerabilities.
- Develop and implement security policies, procedures, and standards in accordance with industry frameworks and compliance requirements.
- Perform security assessments and audits, identifying security gaps and providing recommendations for improvements.
- Collaborate with cross-functional teams to design and implement secure network architecture and infrastructure, ensuring the proper configuration and deployment of security controls.
- Maintain comprehensive documentation of security processes, procedures, and configurations.
- Prepare detailed reports on incident findings, vulnerability assessments, and security metrics.
- Develop and deliver security awareness training programs for employees, promoting a culture of security and ensuring compliance with security policies.
- Provide technical guidance and mentorship to T1 and T2 security engineers, fostering knowledge sharing and professional development.
- Stay up to date with emerging threats, vulnerabilities, and industry trends, and recommend security enhancements and countermeasures.
- Collaborate with vendors and external partners to evaluate and implement new security technologies and solutions.
- Conduct research and analysis on new security technologies, tools, and techniques to enhance the organization's security posture.
- Assist in the development and execution of incident response plans, security incident playbooks, and tabletop exercises.
- Engage in continuous improvement activities to enhance security operations processes and workflows.

****

**Information Security**
- Comply with all organizational information security policies, procedures, and best practices, including proper handling of sensitive data, use of approved systems, and adherence to access control measures.
- Actively contribute to maintaining the organization's information security by participating in required training, reporting potential security incidents, and promoting a culture of security awareness in daily activities.

**Requirements**:

- Bachelor's degree in Computer Science, Information Security, or a related field and years of work experience).
- Significant experience working as a Security Engineer, with a focus on cybersecurity technologies, operations, and incident response.
- In-depth knowledge of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and industry best practices.
- Expertise in designing and implementing security controls and technologies, such as firewalls, IDS/IPS, SIEM, DLP, and endpoint protection.
- Strong understanding of network protocols, architectures, and infrastructure components.
- Experience with advanced threat analysis, including threat intelligence, malware analysis, and forensic investigation techniques.
- Demonstrated ability to lead and manage security incidents, including incident response coordination and post-incident analysis.
- Excellent analytical and problem-solving skills, with the ability to think strategically and identify innovative security solutions.
- Strong communication and interpersonal skills, with the ability to effectively interact with stakeholders at all levels of the organization.
- Relevant certifications such as Certified Information Systems Security Professional (CISSP),