Senior / Lead Information Security Engineer - (IGT1 Lanka: WorkWave)

The ideal candidate will have a strong background in security operations infrastructure security risk management and compliance. This role is crucial in ensuring our systems and data remain secure compliant and resilient against threats.

Responsibilities 

• Architect and enforce robust security frameworks across AWS and Azure platforms.

• Manage Cloud Security Posture ensuring cloud environments are secure and compliant.

• Implement and monitor identity and access management solutions in cloud infrastructure.

• Implement and configure cloud-based security solutions including AWS and Azure specific solutions like CloudTrail GuardDuty AWS WAF Azure WAF etc.

• Monitor security tools and review logs for anomalies to detect and respond to threats in a timely manner.

• Conduct thorough incident response and forensic analysis.

• Provide timely issue resolutions by evaluating tracking escalating managing all requests/problems reported

• Take ownership of security incidents driving swift detection analysis containment and remediation.

• Manage and configure SIEM systems (e.g. Splunk) to enhance security posture; monitor analyze and visualize security data.

• Implement and manage web applications and network firewalls.

• Secure on-premises hybrid and cloud infrastructures focusing on system integrity and availability.

• Conduct regular network and system security audits.

• Design and maintain secure network architectures implement firewall rules and safeguard network traffic from malicious actors.

• Manage and monitor the companys network security infrastructure including firewalls

• intrusion detection/prevention systems cloud gateways email servers endpoint protection systems Extended detection and response (XDR) and VPNs.

• Perform Firewall audits and segmentation tests as required by compliance guidelines.

• Oversee patch validation and management processes.

• Ensure robust identity and access management protocols are in place.

• Validate disaster recovery (DR) and business continuity planning (BCP) processes.

• Conduct enterprise risk assessments and manage mitigation strategies.

• Develop implement and maintain cloud security policies and procedures.

• Assess and manage vendor compliance and third-party risks.

• Conduct privacy management and data protection assessments.

• Design and validate secure architecture solutions.

Qualifications :

• Bachelors degree in Computer Science Information Security or related field.

• Expertise in cloud platforms (AWS Azure) with relevant certifications (e.g. AWS Certified Security Specialty Microsoft Certified: Azure Security Engineer Splunk security admin or equivalent).

• 4-5 years of experience in information security or a related field.

• Hands-on experience with security operations in a complex dynamic environment.

• Proven track record of managing compliance initiatives and security audits.

• Experience in developing and implementing security policies and procedures.

• Experience in DevSecOps practices and CI/CD pipeline security.

• Strong understanding of network security principles protocols and technologies (e.g. firewalls VPNs IDS/IPS).

• Strong understanding of security compliance frameworks (PCI DSS SOC ISO PrivacyShield/Data Privacy Framework).

• Proficiency in security tools and technologies including SIEM firewalls IDS/IPS and endpoint protection.

• Experience with threat detection incident response and forensic analysis.

• Knowledge of cloud security principles and practices particularly with AWS Azure or Google Cloud.

• Strong knowledge of network security system security and secure architecture design.

• Experience with enterprise risk management and vendor compliance assessments.

• Excellent communication skills with the ability to train and raise security awareness among employees.

• Strong analytical and problem-solving skills with the ability to handle complex security incidents.

Additional Information :

We believe that coming together as a community in person is important for innovation connection and fostering a sense of belonging. Our roles have the right balance of remote and in-office working to enable flexibility for managing your life along with ensuring a real connection with your colleagues and the broader IFS community.

Remote Work :

No

Employment Type :

Full-time