Description:
The Senior Information Security Engineer is a strategic technical leader responsible for designing, implementing, and optimizing advanced security architectures across the companys hybrid infrastructure, applications, and cloud environments. This role drives security engineering initiatives, mentors junior engineers, leads complex incident response efforts, and ensures compliance with global standards and regulatory requirements. The senior engineer collaborates with IT leadership, risk, and compliance teams to strengthen the companys security posture and influence enterprise security strategy.Job Description:
An opportunity exists for a Senior Information Security Engineer to work within a growing financial
services organisation, supporting both on-premises and cloud-based environments.
Key Responsibilities
Security Architecture & Engineering
Lead the design and implementation of advanced security controls across on-prem, cloud, and SaaS environments (Azure, Microsoft 365). Define security architecture standards and review new technology integrations for compliance. Champion secure development lifecycle practices and perform advanced application security assessments. Configure and maintain enterprise firewalls to ensure optimal security and performance. Implement and manage Web Application Firewall (WAF) solutions to protect against application-layer attacks.
Security Operations Leadership
Oversee, configure and optimize security tools (Firewalls, Webservers, SIEM, EDR, DLP, vulnerability management platforms). Develop automation strategies for threat detection and response, integrating with ITSM platforms Establish operational playbooks and mentor team members on best practices. Collaborate with outsourced SOC teams to ensure effective monitoring and incident escalation. Integrate SOC services into the companys security operations framework for seamless threat detection and response. Manage SLAs and performance metrics for outsourced SOC providers.
Incident Response & Threat Management
Lead major incident investigations, forensic analysis, and root cause determination. Act as escalation point for critical security events and coordinate cross-functional response. Drive proactive threat hunting and advanced analytics initiatives.
Vulnerability & Patch Management
Define vulnerability management strategy and ensure timely remediation of critical risks. Provide executive-level reporting on risk exposure and remediation progress.
Identity & Access Management
Architect and enforce enterprise-level identity gover
22 Jan 2026;
from:
gumtree.co.za