Security Engineer at Kredete

Role Overview

• We are seeking a seasoned Security Engineer to safeguard our critical digital assets and infrastructure from evolving cyber threats. In this role, you will be the frontline defender, responsible for implementing robust security measures, proactively hunting for vulnerabilities, and rapidly responding to security incidents to ensure the integrity, confidentiality, and availability of our systems.

Key Responsibilities

• Defend & Monitor: Continuously monitor security alerts from our SIEM, EDR, firewalls, and other security systems to detect and investigate malicious activity.
• Respond & Recover: Lead the response to security incidents, performing containment, eradication, and forensic analysis to identify root cause and prevent recurrence.
• Identify Weaknesses: Conduct regular vulnerability assessments and penetration tests on our networks, applications, and cloud environments to find security gaps before attackers do.
• Harden Defenses: Configure, manage, and optimize our security infrastructure, including firewalls, WAF (Web Application Firewall), IDS/IPS, and endpoint protection tools.
• Automate Security: Develop scripts (e.g., in Python, Bash, or PowerShell) to automate repetitive security tasks and improve our operational efficiency.
• Enforce Policy: Help implement and enforce IT security policies and controls, ensuring compliance with relevant standards like ISO 27001 or the NDPA.
• Promote Awareness: Contribute to company-wide security training initiatives to foster a strong culture of security awareness.

Qualifications & Experience

• You hold a Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• You have 3-5 years of hands-on experience in a cybersecurity role such as Security Engineer, SOC Analyst, or Network Security Administrator.
• You possess proven, practical experience with:
• Core security tools: Firewalls (Palo Alto, Fortinet), SIEM (Splunk, Elastic, Sentinel), and EDR (CrowdStrike, SentinelOne).
• Networking fundamentals: Deep understanding of TCP/IP, DNS, VPNs, and network segmentation.
• Cloud security: Hands-on experience securing cloud platforms, preferably AWS or Azure.
• Operating Systems: Strong administration skills for both Windows and Linux environments.
• You have a strong grasp of common cyber threats, attack vectors, and vulnerability management lifecycles.
• You are a proactive problem-solver with excellent analytical skills and the ability to remain calm under pressure during incidents.
• You can communicate complex security concepts clearly to both technical and non-technical colleagues.

Nice To Have

• Professional cybersecurity certifications such as CEH, CompTIA Security+, CySA+, or CISSP (Associate).
• Experience with scripting for automation using Python, PowerShell, or Bash.
• Knowledge of securing containerized environments (Docker, Kubernetes).
• Experience participating in internal or external security audits.
• A passion for continuous learning and staying updated with the latest security trends and threats.