Security Engineer

• Create cyber security related artefacts, such as IT risk reports, conformity checks and cyber threat modeling (OWASP)
• Monitor the software development process, performing configuration management, identifying safety, performance, and compliance issues
• Identify potential IT risks, including cybersecurity threats, system vulnerabilities, and compliance gaps
• Analyze the potential impact of these risks on the business and its customers and assess the likelihood and severity of risks
• Ensure IT systems and processes comply with relevant regulations and organizational policies
• Stay informed about changes in regulations and industry best practices
• Conduct risk assessments and audits
• Provide training and awareness programs on IT risk management
• Support IT projects and initiatives related to risk management

Must have skill:

• Strong understanding of IT compliance requirements and security principles, Cyber threat modeling (OWASP)
• Proficiency in risk evaluation and documentation.
• Ability to implement security monitoring solutions and respond to security incidents effectively.
• Experience in conducting vulnerability assessments and penetration testing for cloud applications.
• Understanding of integrating security into DevOps practices to ensure secure application development and deployment.