Embedded Security Engineering Technical Consultant

at  Control Risks

JOB TITLE: SECURITY ENGINEERING TECHNICAL CONSULTANT

The Security Engineering Technical is responsible for providing technical
leadership and expertise in designing and implementing robust security solutions within an
organization. This role involves assessing security risks, developing security architectures, designing
secure systems, and overseeing the implementation and maintenance of security controls. The
Security Engineering Lead collaborates with cross-functional teams to enhance the organization’s
security posture and mitigate potential threats. also provide technical guidance and support to other
security engineers and analysts, as well as collaborate with other collaborate with other IT teams and stakeholders to
ensure the security of our systems and data.
Key Responsibilities:
1. Assess security risks assessment and develop comprehensive security architectures aligned
with the organization’s goals and regulatory requirements. Design secure systems, networks,
and infrastructure that protect against threats and vulnerabilities. Define security
requirements and standards for software applications, databases, and other technology
assets.
2. Oversee the implementation of security controls and technologies to safeguard the
organization’s information assets. Collaborate with internal teams and external vendors to
ensure the proper configuration, integration, and deployment of security solutions. Conduct
security assessments and penetration testing to validate the effectiveness of implemented
controls.
3. Develop and maintain incident response plans, including procedures for detecting,
investigating, and mitigating security incidents. Lead incident response efforts, coordinating
with internal teams and external stakeholders. Conduct post-incident analysis to identify
lessons learned and implement necessary improvements.
4. Provide guidance and support to employees on security-related matters.
5. Identify, assess, and prioritize security risks based on their potential impact on the
organization. Develop risk mitigation strategies and implement appropriate security controls.
Conduct risk assessments and audits to ensure compliance with industry standards and
regulatory requirements.
6. Stay abreast of the latest security trends, vulnerabilities, and emerging technologies.
Conduct research and evaluate new security tools, technologies, and methodologies. Make
recommendations for their adoption to enhance the organization’s security posture.
7. Provide technical leadership and mentorship to the security team. Collaborate with crossfunctional teams, including IT, operations, and compliance, to align security efforts with
business objectives. Foster a collaborative and inclusive work environment.
8. Deliver all other objectives as deemed necessary by the Line manager.

REQUIREMENTS

Qualification & Skills:

• Bachelor’s or master’s degree in computer science, information security, or a related field.

Relevant certifications such as Certified Information Systems Security Professional (CISSP)

or Certified Information Security Manager (CISM) are preferred.

• Minimum of 8 years of experience as a security engineer, security analyst, security architect,

or a similar role

• Proven experience in security engineering and designing secure systems. Strong

understanding of security principles, technologies, and best practices. Experience in security
incident response, risk management, and compliance. Experience in leading security

engineering teams is advantageous.

• In-depth knowledge of security technologies, including firewalls, intrusion detection systems,

encryption, access control, authentication, and vulnerability assessment tools. Proficiency in

secure coding practices and secure software development methodologies.

• Familiarity with industry security frameworks such as NIST Cybersecurity Framework, ISO

27001, and CIS Controls. Knowledge of regulatory requirements such as GDPR, HIPAA, or

PCI DSS. Ability to translate frameworks and standards into practical security solutions.

• Strong analytical skills to assess complex security risks and develop effective mitigation

strategies. Ability to analyse security incidents, identify root causes, and implement
appropriate remediation actions. Strong problem-solving abilities to resolve technical security

issues.

• Excellent communication skills to effectively convey complex security concepts to technical

and non-technical stakeholders. Strong leadership abilities to inspire and motivate the
security engineering team. Ability to collaborate and build relationships with internal and

external stakeholders.

• Proactive attitude towards continuous learning and staying updated with the evolving

security landscape. Participation in security conferences, training programs, and industry

forums to enhance knowledge and skills.

• Excellent leadership, communication, and problem-solving skills
• Knowledge of security best practices and methodologies, such as risk assessment,

vulnerability scanning, penetration testing, incident response, etc.

• Proven experience in security engineering and designing secure systems. Stron