IT SOC is responsible for the information security of all information systems across the global IFS organisation. The Information Security Engineer position complements the existing IT SOC team by bringing deep technical security skills, especially in Microsoft technologies, to help protect our IT infrastructure, systems, and services from a range of security threats. Based in Sri Lanka, the position forms part of a global Security Operations Centre (SOC) team which is consciously geographically distributed to protect against single points of failure as well as support a 24*7 operation model of continuous service availability. Working hours will be classified on normal operating hours and limited periods of working outside this time frame may be necessary in response to specific projects or events followed by appropriate compensations where applicable.
We are looking for an Information Security Engineer with a passion for information security and a hunger to develop and succeed in their career. Working as a member of the IT SOC team, the Security engineer supports the Security Operations Centre (SOC) by developing, maintaining, and executing the SOC internal processes in accordance with the Incident Response Playbooks and overall IFS Information Security Strategy across the global IFS IT infrastructure. The Information Security Engineer's role includes providing investigation and remediation support in the event of a significant security incident.
Technical Competencies:
· Ability to work well in a Team
· Good analytical skills
· Good interpersonal skills
· Experience in incident response and incident management.
· Knowledge of MITRE ATT&CK framework
· Experience in EDR, malware detection, intrusion detection and prevention systems.
· Experience with a SIEM solutions (Splunk, Sentinel, QRadar, ArcSight, LogRhythm, ELK, etc.)
· Knowledge and experience on Cloud services and security (Azure preferred).
· Experience with Microsoft Security Suite (Office365 Defender, Defender Cloud App, Security and Compliance center)
· Experience with protocol analysis and tools (Wireshark, tcpdump, etc.)
· Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, and packet inspection.
· Basic understanding of Windows, Linux, network device monitoring and logging techniques.
· Basic understanding of host and network security hardening, networking protocols, common intrusion techniques, and common risk management concepts.
· Programming and scripting skills – (PowerShell, Python, etc.)
·Basic IT Project Management Skills
Behavioral Attributes:
· A passion for cyber security and a keen interest in IT;
· Serve as an ambassador for IFS information security practice, promoting best practice and helping develop a healthy, engaged information security culture across the organisation
· Excellent analytical and problem solving skills, with an ability to think like an adversary whilst operating meticulously in accordance with IFS policies and code of conduct;
· Strong organisational skills and an ability to manage time efficiently.
· Excellent inter-personnel skills and an ability to share knowledge and experience to help develop others in their role;
· Excellent at prioritising and focusing on that which matters most within a particular task or set of tasks;
· An ability to work under pressure, particularly when dealing with threats, security incidents, and other situations of high demand.
Essential:
· Bachelor’s degree or equivalent
· 1-3 years of working experience in Cyber Security
Desirable:
Any of the following certifications would be an advantage.
· Security Certifications – CEH, ECSA, GCIH, GCIA, SSCP, CISSP, CompTIA Security+
· Network Certifications – CCNA, CCNAS, PCNSA
· Cloud Certifications - AWS SA, AWS Security Specialty, Azure SC-200, Azure AZ-500, Azure SC-300
We believe that coming together as a community, in person, is important for innovation, connection and fostering a sense of belonging. Our roles have the right balance of remote and in-office working to enable flexibility for managing your life along with ensuring a real connection with your colleagues and the broader IFS community.