Company Profile:
Ocuco Limited is a leading software solutions provider in the eyecare industry. It is dedicated to helping eyecare professionals streamline their operations and provide exceptional patient care. With a global presence and a focus on innovation, Ocuco has built a reputation for delivering cutting-edge technology and outstanding customer service.
Job Description:
Ocuco Group is offering an exciting opportunity for a Security Engineer to work with our Security, IT & Operations teams worldwide. The core objective is to contribute to Ocuco's continuous growth by providing a world-class secure IT infrastructure.
Key Responsibilities:
1. Lead vulnerability management and incident response actions
2. Plan, implement, manage, monitor, and enhance security measures for the protection of data, systems, networks and applications
3. Implement systems security controls in line with security policy requirements
4. Review security controls and policies against industry best practices and regulatory requirements
5. Assess risks and identify vulnerabilities
6. Enhance security aspects of IT procedures
7. Implement, enhance and review firewall configurations
8. Monitor systems and review logs for security incidents
9. Manage systems patching activities
10. Conduct external and internal vulnerability scanning
11. Perform Access Reviews across on-prem and cloud assets
12. Manage external penetration testing
13. Identify new and emerging security threats and implement protective measures
14. Grow security consciousness in other staff and assist in incorporating secure-by-design features into systems and application design
The successful candidate must have:
1. 3+ years of experience in an IT infrastructure role
2. Skilled in Microsoft Azure cloud services design, deployment, management, security and audit
3. Hands-on experience with security baselining
4. Expertise in vulnerability management tools
5. Experience in designing and managing, in at least one of these areas:
1. Networking, including routing, VLAN, subnets, firewalls, switches, security, enterprise wireless, VPN, BGP
2. Applications, including Remote Desktop Services, IIS, Apache
3. DevOps/IT automation, including scripting, Chef/Puppet/Ansible
1. Microsoft Windows Server & AD
2. Excellent analysis, planning, organisation & prioritisation skills
3. A conscientious approach to work, assuming personal ownership of responsibilities & tasks
4. Exceptional teamwork skills, with a proactive attitude toward contributing to and enhancing team performance
5. Excellent communication skills and native-level fluency in English
The ideal candidate will also have:
1. A relevant IT qualification
2. A relevant Security qualification
3. Proficiency in incident response tools (Cortex XDR, Microsoft Sentinel)
4. Expertise in vulnerability management tools (Edgescan, Snyk, SonarCloud)
5. Microsoft Windows Server Operating Systems, multi-forest Active Directory and RemoteApp
6. Microsoft Azure Security management and experience with Azure Policy
7. Networking qualifications, such as Cisco CCNA
8. Firewall administration and security (Palo Alto, Azure Firewall)
9. IIS, Apache, load balancing, general web server technology, RDS
10. DevOps in relation to automated management of IT systems
11. Technical Security including access control and audit, endpoint protection, system hardening, intrusion prevention, incident management
12. Linux server Operating Systems
13. VMWare vCentre planning, installation & maintenance
#J-18808-Ljbffr