Information Security Engineer

AIX is currently seeking a highly motivated and experienced Information Security Engineer to join our dynamic IT team. This role will be crucial in maintaining and enhancing our security posture, with a strong emphasis on the practical application of security principles within our Microsoft Server 2019 environment and through our FortiGate firewall infrastructure. The ideal candidate will possess a deep understanding of security best practices, be adept at troubleshooting and resolving security-related issues, and have a proactive approach to identifying and mitigating potential threats.

Responsibilities

Security Administration of Microsoft Server 2019:

• Implement and manage security policies and configurations on Windows Servers, including Active Directory, Group Policy Objects (GPOs), and server hardening.
• Monitor and analyze server security logs to identify suspicious activity and potential security incidents.
• Administer and maintain server-based security tools and technologies (e.g., antivirus, endpoint detection and response).
• Ensure timely patching and vulnerability management of Windows Server infrastructure.
• Implement and manage secure configurations for server roles and features.

FortiGate Firewall Management:

• Configure, manage, and maintain FortiGate firewalls, including rule creation, VPN configuration (IPSec, SSL VPN), web filtering, application control, and intrusion prevention systems (IPS).
• Monitor firewall logs and alerts to identify and respond to security threats.
• Implement and enforce firewall policies to control network access and protect internal resources.
• Troubleshoot connectivity and security issues related to the firewall.
• Perform regular firewall rule reviews and optimizations.

Threat Detection and Incident Response:

• Participate in the identification, investigation, and resolution of security incidents.
• Analyze security alerts and indicators of compromise (IOCs).
• Assist in the development and implementation of incident response plans.

Vulnerability Management:

• Conduct regular vulnerability assessments and penetration testing (internal and external) in collaboration with third-party vendors or using internal tools.
• Analyze vulnerability scan results and prioritize remediation efforts for Windows Servers and network devices (including FortiGate).
• Track and report on the status of vulnerability remediation.

Security Policy and Procedure Development:

• Contribute to the development, implementation, and maintenance of security policies, standards, and procedures.
• Ensure adherence to security policies and regulatory compliance requirements.

Security Awareness and Training:

• Assist in the development and delivery of security awareness training for employees.

Documentation and Reporting:

• Maintain accurate and up-to-date documentation of security configurations, procedures, and incident responses.
• Prepare regular security reports for management.

Collaboration:

• Work closely with other IT teams (e.g., network, systems) to implement and maintain security controls.
• Communicate effectively with technical and non-technical stakeholders regarding security matters.

Continuous Learning:

• Stay up-to-date with the latest security threats, trends, and technologies, particularly related to Microsoft Server and FortiGate.

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent practical experience).
• Minimum of 2-3 years of experience in an Information Security role.
• Demonstrable hands-on experience in administering and securing Microsoft Server 2019 environments, including:
  • Active Directory security principles and best practices.
  • Group Policy management for security hardening.
  • Windows Server security features and tools.
• Patch management and vulnerability remediation on Windows Servers.
• Proven practical experience in configuring, managing, and troubleshooting FortiGate firewalls, including:
  • Rulebase management and optimization.
  • VPN configuration (IPSec and SSL VPN).
  • Web filtering and application control.
  • Intrusion Prevention System (IPS).
  • High Availability (HA) configurations (if applicable).
• Strong understanding of networking principles (TCP/IP, DNS, DHCP, routing, switching).
• Knowledge of common security threats and attack vectors.
• Experience with vulnerability scanning tools and methodologies.
• Familiarity with security frameworks and best practices (e.g., NIST, ISO 27001).
• Excellent analytical, problem-solving, and troubleshooting skills.
• Strong communication and interpersonal skills, good command in English.
• Ability to work independently and as part of a team.

Preferred Qualifications:

• Relevant security certifications (e.g., CompTIA Security+, CISSP, CEH, Fortinet NSE certifications, Microsoft Certified: Azure Security Engineer Associate).
• Experience with other security tools and technologies (e.g., SIEM, EDR, vulnerability management platforms).
• Experience with network routing and switching concepts and security best practices.
• Practical experience with Microsoft Defender for Endpoint (or other Microsoft Defender products), including configuration, monitoring, and threat response.
• Scripting skills (e.g., PowerShell).
• Experience with cloud security (e.g., Azure, AWS).
• Knowledge of relevant data privacy regulations (e.g., GDPR, CCPA).