Information Security Engineer / Analyst

We are seeking anInformation Security Engineer / Analystwith 3–5 years of experience protecting enterprise systems and data. The ideal candidate will bring expertise infirewalls, IPS/IDS, vulnerability management, incident response, and risk assessment, along with strong scripting skills and knowledge of security frameworks such asNIST, CIS, and SOC 2. This role is critical to ensuring the confidentiality, integrity, and availability of organizational information assets.Key Responsibilities Administer, monitor, and optimizefirewalls,IPS/IDS, and other security appliances. Conductvulnerability managementand oversee remediation activities. Performincident response, including investigation, containment, and recovery. Executerisk assessmentsandsecurity assessmentsacross systems and applications. Develop and maintainsecurity architectureand system administration standards. Implement and tuneSIEM (Security Information and Event Management)solutions and log management systems. Managecloud securityconfigurations, encryption controls, and secure DevOps practices. Supportchange managementandconfiguration managementprocesses. Script inPowerShell, Python, or VB Scriptto automate security monitoring and remediation. Ensure compliance with control frameworks includingNIST,CIS, andSOC 2. Mandatory Skills Strong knowledge offirewall administration,IPS/IDS, andvulnerability management. Hands-on experience withincident responseandrisk assessmentprocesses. Proficiency inPowerShell, Python, or VB Scriptscripting for automation. Experience withsecurity architectureand security administration. Familiarity withDevOps practicesin a secure environment. Desirable Skills Experience withSIEM platforms(e.g., Splunk, QRadar, ArcSight) and log management. Knowledge ofcloud securityprinciples (Azure, AWS, or GCP). Experience withencryption technologiesand key management. Familiarity withchange managementandconfiguration managementtools. Working knowledge of compliance and control frameworks:NIST, CIS, SOC 2. Exposure topenetration testingor advanced security assessments.