Information Security Engineer

My Dublin-based client is looking for an Information Security Engineer to join their team on a permanent basis. This role offers both remote and hybrid working options.

Iin this role, you will be responsible for designing, building, implementing and supporting enterprise-class security systems across the business. You will anticipate and defend the company against information security risks. You will ensure that stakeholder security requirements necessary to protect business goals & processes are adequately addressed in all aspects of enterprise engineering including reference models, segment and solution architectures.

Job Responsibilities

• You will build security infrastructure from scratch or update existing systems in response to ongoing changes in the security landscape, including new risks and adherence to applicable regulations, whether on premise or cloud based.
• You will identify security design gaps in existing and proposed deployments and recommend changes or enhancements
• You will perform & supervise vulnerability testing, risk analyses and security assessments
• Recommend security controls and identify solutions that support the business objectives.
• Respond immediately to security-related incidents and provide thorough remedial solutions and analysis
• Assist in the assessment of risk to the security of information, assets, and personnel
• You will oversee, manage, and report on all risks associated with information security, including all forms of cyber risk and all risks relating to the protection of personal data throughout the business in all locations
• Develop & monitor Key Risk Indicators (KRI) and Key Performance Indicators (KPI), relating to the information security controls of the business
• You will secure infrastructure, containers, CI/CD pipelines, and introduce guardrails aligned with DevSecOps principles
• Review and approve installation of firewalls, VPN, routers, IDS scanning technologies and servers
• Plan, research and deploy robust security controls for any IT project
• Identify and communicate current and emerging security threats and you will deploy security controls to mitigate threats as they emerge
• You will train users in implementation or conversion of systems
• You will define, implement and maintain corporate security policies and procedures
• Assist in management of cyber risk including risk reviews and mitigation planning
• Ensure complete and accurate risk register in place and monitored
• System/application testing validation
• Assistance with audits to ensure smooth progress and least business disruption
• Regularly communicate vital information, security needs and priorities to upper management

Experience Required

• 5+ years’ experience in Information Security
• Strong experience in information security tools, solutions, and reporting
• Experience in management of information systems or information security
• Excellent understanding of Microsoft Azure / Microsoft 365 cloud technologies

Essential and Desirable Skills

• Ability to act as an enterprise security subject matter expert who can explain complex topics to those without a technical background
• Demonstrated ability to identify risks associated with business processes, operations, technology projects and information security programs
• Analytical skills with an ability to interpret quantitative and qualitative information to achieve objective and produces effective solutions to problems
• Process mapping and data analysis skills
• Effective verbal and written communication skills

Educational Requirements

• Relevant third level degree qualification in IT
• Relevant certification is preferred (CISSP, CISM, CASP+, MCP)

Working Hours & Benefits

• Remote and hybrid working options
• 37.5 hour work week
• Bonus
• Healthcare
• Pension contribution
• Life assurance
• Additional annual leave