Security Engineers provide expertise around the systems and processes needed to maintain the security of information. Their work serves to protect the confidentiality, integrity and availability of an organization’s systems and application data. They integrate themselves into the organization and determine security requirements, plan/implement/test security systems, and establish best practices across the organization.
A Security Engineer must be perceptive and know what to protect. They must be able to understand how a threat might try to exploit vulnerabilities.
Security Engineers must possess both technical skill and the ability to communicate security threats to non-technical stakeholders
With external threats evolving quickly, Security Engineers must be able to work quickly and with attention to detail, making sure not to further compromise company systems.
Security threats are constantly changing. Resiliency and curiosity are required to identify threats before they become a reality.
Build and maintain the automated systems that test for front- and back-end security vulnerabilities
Develop and evangelize security best practices across the organization
Implement physical protection mechanisms such as firewalls and VPN tunnels
Configure monitoring for key systems daily to verify the integrity and availability of all hardware, server resources, and critical processes
Review system and application logs, verifying completion of critical scheduled jobs such as backups.
Repair and recover from hardware or software failures, coordinating and communicating with impacted teams.