CrawlJobs Logo

Information Security Engineer

5CA

Location Icon

Location:
South Africa

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Information Security Engineer is responsible for designing, implementing, and maintaining security controls across the organization’s cloud, identity, endpoint, and network environments. This role focuses on engineering secure configurations, building automation, integrating security tooling, and ensuring the ongoing protection of systems and data. The Information Security Engineer works closely with the IT & InfoSec Helpdesk, Infrastructure teams, and Development teams to architect secure solutions, conduct security assessments, and implement governance frameworks aligned to ISO 27001 and internal InfoSec policies. This role also supports complex incident response activities, assists in root-cause analysis, and ensures controls are implemented following secure-by-design principles.

Job Responsibility:

  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
  • Develop KQL detection queries aligned to threat behaviours and emerging attack patterns
  • Improve signal fidelity across Defender platforms and integrate new data sources
  • Serve as technical escalation during high-severity incidents
  • Perform deep-dive investigations into identity compromise, cloud misconfigurations, lateral movement, and high-risk endpoint activity
  • Provide forensic artefact analysis support (logs, file metadata, registry data, process analysis)
  • Implement long-term remediation items and drive post-incident improvements
  • Support vulnerability assessment programs across cloud, endpoints, and SaaS platforms
  • Validate remediation efforts with system owners and ensure alignment to risk thresholds
  • Interpret vulnerabilities based on severity, real-world exploitability, and exposure in Microsoft, cloud, and identity stacks
  • Implement and maintain controls aligned with ISO 27001:2022 requirements
  • Support evidence collection, audit preparation, and remediation of nonconformities
  • Maintain accurate documentation including policies, baselines, runbooks, and reference diagrams
  • Build and maintain automation using PowerShell, Azure CLI, Logic Apps, and Functions
  • Automate user lifecycle, security state validation, incident containment tasks, and compliance reporting
  • Continuously identify opportunities to strengthen security posture through modernization, simplification, and automation
  • Work closely with Cloud, IT Support, Development, and Compliance teams to embed security into operational and architectural decision-making
  • Mentor InfoSec Analysts and provide guidance on investigation techniques, threat identification, and control operation
  • Deliver internal training, knowledge-transfer sessions, and documentation
  • Respond to and resolve incidents and requests within the agreed SLAs
  • Handle user and complex incidents across Azure, AVD, and M365
  • Fulfil service requests (e.g., resource provisioning, AVD image updates, M365 security baselines, conditional access adjustments)
  • Problem management: identify recurring issues, perform root-cause analysis, raise Problem records, and propose corrective/preventive actions
  • Escalation management: engage vendor support only after thorough triage and data collection (logs, timelines, impacted scope)

Requirements:

  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
  • SIEM/SOAR engineering (Sentinel, Logic Apps)
  • PowerShell, automation, and API integration
  • KQL, log analysis, and detection engineering
  • Infrastructure-as-Code familiarity (Bicep/ARM/Terraform)
  • Secure network design, segmentation, and encryption practices
  • CompTIA Security+ or similar (i.e. ISC2 Certified in Cybersecurity)
  • SC-300: Identity & Access Administrator
  • Customer focused
  • Communication
  • Collaborative
  • Innovative
  • Problem-solving
  • Adaptability

Nice to have:

  • AZ-500: Azure Security Engineer
  • SC-200: Security Operations Analyst
  • ISO 27001: 2022 Foundations
What we offer:
  • The flexibility to work 100% remotely with no wasted commute time and travel costs
  • A position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • A diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities

Additional Information:

Job Posted:
May 10, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
5CA - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Engineer

Information Security Engineer

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai; Bangalore
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in information security, cybersecurity, or security engineering
  • Strong knowledge of application security, cloud security (AWS/GCP/Azure), and network security
  • Experience with SIEM solutions, log analysis, and intrusion detection/prevention systems
  • Hands-on experience with secure coding practices in programming languages like Java, Python, or Go
  • Proficiency in security testing tools such as Burp Suite, Metasploit, OWASP ZAP, Nessus, and Wireshark
  • Understanding of encryption, authentication protocols, and PKI
  • Experience in DevSecOps and securing CI/CD pipelines
  • Strong knowledge of firewalls, VPNs, IDS/IPS, and endpoint security solutions
  • Hands-on experience with security automation and scripting
  • Excellent problem-solving skills and the ability to work in a fast-paced environment
Job Responsibility
Job Responsibility
  • Design, implement, and maintain robust security controls for applications, networks, and cloud infrastructure
  • Conduct vulnerability assessments, penetration testing, and risk analysis to identify security gaps
  • Develop and enforce secure coding practices for software development teams
  • Implement IAM (Identity & Access Management) policies and security monitoring solutions
  • Ensure compliance with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST
  • Work closely with DevOps teams to integrate security into CI/CD pipelines
  • Monitor, analyze, and respond to security incidents and threats
  • Conduct threat modeling and security awareness training for engineering teams
  • Automate security processes using scripting (Python, Bash, etc.)
  • Collaborate with cross-functional teams to ensure secure architecture design
What we offer
What we offer
  • Entrepreneurial culture
  • Working with brightest minds in the industry
  • Driving digital transformation in logistics
  • Career growth
  • Fulltime
Read More
Arrow Right

Information Security Engineer

Assurit is currently seeking an experienced Information Security Engineer to sup...
Location
Location
United States
Salary
Salary:
Not provided
assurit.com Logo
Assurit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Information Systems, or related discipline
  • or equivalent experience
  • 5+ years of experience defining security programs or processes for the protection of sensitive or classified information
  • Strong understanding of security control frameworks and requirements (e.g., NIST SP 800-53, RMF, ISO 27001, FIPS)
  • Experience performing vulnerability assessments, risk analysis, and security architecture reviews
  • Ability to evaluate system design and information flow to identify security risks and define required protections
  • Strong experience developing or maintaining security policies, standards, and procedures
  • Excellent analytical, problem-solving, and decision-making skills
  • Strong communication skills with the ability to create clear documentation and explain complex concepts to technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Analyze system and information sensitivity to determine appropriate security requirements, protections, and controls
  • Define, develop, and maintain security policies, standards, and procedures governing information protection
  • Conduct vulnerability assessments and risk evaluations based on information sensitivity, system architecture, and information flows
  • Identify security gaps and recommend risk-based mitigation strategies and improvements
  • Support the design and implementation of security controls, ensuring alignment with organizational and regulatory requirements
  • Assess security architectures and recommend enhancements to improve confidentiality, integrity, and availability
  • Collaborate with cross-functional teams to ensure security requirements are integrated into system design, development, and operations
  • Produce clear documentation, reports, and artifacts supporting security analysis, decision-making, and audit readiness
  • Assist with continuous monitoring, metric development, and policy updates to support evolving mission needs
What we offer
What we offer
  • medical and dental coverage
  • paid time off
Read More
Arrow Right

Information Security Engineer

Responsible for maintaining the integrity and security of enterprise-wide cyber ...
Location
Location
United States , Reston
Salary
Salary:
Not provided
ltconsultingllc.net Logo
LT Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI clearance
  • Bachelor’s degree in Computer Science, Engineering or a related field
Job Responsibility
Job Responsibility
  • Maintaining the integrity and security of enterprise-wide cyber systems and networks
  • Supporting cyber security initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff
  • Coordinating resources during enterprise incident response efforts, driving incidents to timely and complete resolution
  • Employing advanced forensic tools and techniques for attack reconstruction, including dead system analysis and volatile data collection and analysis
  • Supporting internal HR/Legal/Ethics investigations as forensic subject matter expert
  • Performing network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output as it pertains to the cyber security of communications networks
  • Reviewing threat data from various sources and develops custom signatures for Open Source IDS or other custom detection capabilities
  • Correlating actionable security events from various sources including Security Information Management System (SIMS) data and develops unique correlation techniques
  • Utilizing understanding of attack signatures, tactics, techniques and procedures associated with advanced threats
  • Developing analytical products fusing enterprise and all-source intelligence
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right

Information System Security Engineer

Leave things better than you found them - share and share alike, let others bene...
Location
Location
United States , Annapolis Junction
Salary
Salary:
150000.00 - 225000.00 USD / Year
lufburrow.com Logo
LufCo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • B.S. degree in Computer Science or other related field
  • 4 years of additional experience may be substituted for a bachelor’s degree
  • CISSP Certification
  • Fourteen (14) years’ experience is required
  • Strong troubleshooting skills and ability to collaborate with others to determine root cause
  • Strong communication and requirements solicitation skills
  • TS/SCI with polygraph, U.S. citizen
Job Responsibility
Job Responsibility
  • Security engineering representative on engineering teams for the design, development, implementation, and integration of secure networking, computing, and enclave environments
  • Hands on application and knowledge of IA policy, procedure, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
  • Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
  • Security planning, assessment, risk analysis, and risk management
  • Identify overall security requirements for the proper handling of Government data
  • Interact with the customer and other project team members
What we offer
What we offer
  • Competitive salary
  • generous PTO
  • health/dental/vision insurance
  • 401K matching
  • tuition reimbursement
  • Paid Time Off
  • 401K Contribution and Employer Match Contributions
  • Medical, Dental, and Vision Coverage
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

Barbaricum is seeking an Information Systems Security Engineer (ISSE) providing ...
Location
Location
United States , Warren, MI
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Recommend security designs and develop architectures for combat ground platforms
  • Integrate cybersecurity tasks within systems engineering processes during system acquisition
  • Provide expertise in Cybersecurity and Information Assurance for combat vehicles
  • Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
  • Conduct cyber threat assessments and recommend solutions for identified deficiencies
  • Support cybersecurity testing and certification, ensuring system compliance
  • Facilitate certification processes with Army and national cybersecurity offices
  • Translate security controls into system requirements and verify threat mitigations
  • Participate in technical meetings and provide cybersecurity input on C5ISR integration
  • Prepare and present cybersecurity-related materials and reports
Job Responsibility
Job Responsibility
  • Recommend security designs and develop architectures for combat ground platforms
  • Integrate cybersecurity tasks within systems engineering processes during system acquisition
  • Provide expertise in Cybersecurity and Information Assurance for combat vehicles
  • Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
  • Conduct cyber threat assessments and recommend solutions for identified deficiencies
  • Support cybersecurity testing and certification, ensuring system compliance
  • Facilitate certification processes with Army and national cybersecurity offices
  • Translate security controls into system requirements and verify threat mitigations
  • Participate in technical meetings and provide cybersecurity input on C5ISR integration
  • Prepare and present cybersecurity-related materials and reports
Read More
Arrow Right

Security and Application Security Engineer

Beacon Technologies is seeking a Security and Application Security Engineer. The...
Location
Location
United States , Las Vegas
Salary
Salary:
Not provided
beacontechinc.com Logo
Beacon Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of five years of Information Security experience with at least two years of application-level security
  • Strong communication skills: ability to convey and document security guidelines, requirements, and coding best practices
  • Familiarity with Security Best Practices in common coding languages
  • Application Penetration Testing / API Security Testing
  • Software Development Life Cycle Design and Implementation
  • Static and Dynamic Application Testing Tools and Methods
  • Container and orchestration security (Kubernetes, Docker, Octopus, GitHub, etc.)
  • Familiarity with Application Security Testing Frameworks such as OWASP
  • Strong logical and analytical thinker
  • exceptional skills in security systems solutions
Job Responsibility
Job Responsibility
  • Operate as a liaison between the Security Team and the Development Teams
  • Preserve PCI and SOX Security Certification programs with a primary focus on ensuring compliance with the appropriate industry standards and security controls
  • Supporting incident response and architecture review whenever applications security expertise is needed
  • Integrating threat modeling practices into the SDLC
  • Work with other staff to perform periodic scans and evaluation of system security including areas such as patch management, penetration testing, vulnerability assessments, and other types of InfoSec-related tasks
  • Assist in identifying and communicating security exposures, information security incidents or non-compliance situations to IT management or the CISO as appropriate. Duties may also include collecting and documenting cyber security and incident response event data as necessary.
What we offer
What we offer
  • Career advancement opportunities
  • extensive training
  • excellent benefits including paying for health and dental premiums for salaried employees.
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

Hoplite Solutions is seeking Information Systems Security Engineers (ISSE) to jo...
Location
Location
United States , Fort Meade
Salary
Salary:
185000.00 - 225000.00 USD / Year
hoplitesolutions.com Logo
Hoplite Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI with Polygraph
  • Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
  • 12 years' experience as an ISSE on programs and contracts of similar scope, type, and complexity to include recent experience within the 5 years with Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture
  • DoD 8570 compliance
  • Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required
Job Responsibility
Job Responsibility
  • Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies
  • Validate and verifies system security requirements definitions and analysis and establishes system security designs
  • Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements
  • Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its content
  • Support security authorization activities in compliance with CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed CSS business processes for security engineering
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
  • Apply knowledge of Cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
  • Interact with the customer and other project team members
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of Cybersecurity architectures, systems, or system components
  • Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
What we offer
What we offer
  • 7% employer 401k contribution
  • fully paid healthcare for our employees
  • outstanding training benefits
  • company funded life insurance and short-term disability insurance
  • Fulltime
Read More
Arrow Right