Job Title: ICT Security Engineer
Job Brief
Core Responsibilities
Required Technical Skills & Qualifications
Preferred Certifications
Key Competencies & Soft Skills

Here is a streamlined, generic ICT Security Engineer job description. This version focuses on the universal core duties of a security engineer without leaning too heavily into a single specialty (like cloud or coding), making it ideal for standard IT environments or mid-sized organizations.

We are looking for a skilled and vigilant ICT Security Engineer to oversee, maintain, and strengthen our organization’s digital defenses. In this role, you will be the primary line of defense protecting our networks, systems, and data from unauthorized access, cyber threats, and vulnerabilities.

The ideal candidate blends strong technical infrastructure knowledge with a security-first mindset. You will work across teams to implement security controls, monitor for active threats, and ensure our overall IT ecosystem is resilient and compliant.

Security Infrastructure Management: Deploy, configure, and maintain essential security tools, including firewalls, corporate antivirus/EDR, intrusion detection systems (IDS/IPS), and content filters.

Monitoring & Detection: Monitor security alerts, system logs, and SIEM platforms daily to identify anomalous behavior, potential breaches, or policy violations.

Incident Response: Act as a core member of the incident response team to isolate, contain, and remediate security incidents; perform root-cause analysis post-incident.

Vulnerability Management: Perform regular vulnerability scans, analyze system configurations, and collaborate with system administrators to apply patches and harden infrastructure.

Access Control: Enforce Identity and Access Management (IAM) best practices, including managing Multi-Factor Authentication (MFA), password policies, and principle-of-least-privilege access.

Compliance & Policy: Assist in documenting security procedures, maintaining alignment with industry standards (e.g., ISO 27001 or NIST), and preparing data for internal or external IT audits.

Education: Bachelor’s degree in Cyber Security, Information Technology, Computer Science, or equivalent practical experience.

Experience: 3+ years of professional experience in an IT Security, Systems Administration, or Network Engineering role.

Networking Foundations: Solid understanding of core networking protocols (TCP/IP, DNS, DHCP, VLANs, routing, and switching).

OS & Scripting: Strong hands-on experience securing Windows and Linux operating systems, with the ability to write basic scripts (PowerShell, Bash, or Python) to automate tasks.

Tools: Familiarity with standard security suites (e.g., Wireshark, Nessus, active-directory administration, and basic SIEM tools).

(While not strictly mandatory, possessing one or more of these is highly valued)

CompTIA Security+ or CySA+

GISF / GSEC (GIAC)

Certified Information Systems Security Professional (CISSP)

Vendor-specific security certifications (e.g., Cisco, Palo Alto, Microsoft, AWS)

Problem-Solving: An analytical mindset capable of connecting disparate logs and data points to uncover root security issues.

Composure Under Pressure: The ability to remain calm, methodical, and focused during an active security incident or system outage.

Clear Communication: Ability to explain technical security risks and mitigation steps to non-technical employees and business stakeholders.