Infrastructure Security Engineer at Quidax

About the Job

• While reporting to the CISO, the Infrastructure Security Engineer is responsible for the security of the computing systems at Quidax. This role involves designing, implementing and day-to-day operations of a wide range of security tools and resources. You will be required to be involved in activities in the Security Operations Center as well as working with the Engineering team to ensure security is embedded into the infrastructure from the get go.
• In this position, you’d be working with SIEM solutions, different types of firewalls, endpoint security solutions, carrying out frequent audits and process controls as well as liaising with several other teams to ensure that Quidax security policy is enforced and properly implemented at all times.
• The ideal candidate has deep technical security knowledge and expertise and will help design and implement robust security solutions, frameworks and governance processes.

Here’s an example of what your day to day at Quidax might look like:

• Responsible for the planning, design, implementation and maintenance of security systems on the infrastructure.
• Deploy, test and maintain security systems.
• Provides valuable insight on securing application software and other third-party platforms.
• Troubleshooting of security systems.
• Monitor security systems activities, fine tune parameters and configuration in order to ensure optimal performance of these systems.   
• Auditing of the Web Application & Network Firewalls and providing insight on best practices.
• Implementing and enforcing relevant information security and data privacy standards and regulations such as ISO 27001, ISO 22301, NDPR.
• Recommend Information security processes and architect security improvements.
• Provide insight into mitigation plans for vulnerabilities & technical glitches.
• Work closely with cross-functional teams while carrying out daily tasks.
• Work across business units on executing standardized security solutions and integrations.
• Liaise with other managers to promote good security practices within the organization.
• Liaising with vendors to carry out audits & VAPTs, implement security solutions and processes in compliance with regulatory standards.
• Stay current with new technology options and vendor products, evaluating which ones would be a good fit for the company.

What you need to have

• Minimum of 3 years’ experience as a Network Security Engineer.
• Very strong foundational knowledge of information technology.
• Strong understanding of cybersecurity concepts and principles.
• Strong understanding of systems architecture.
• Very good understanding of cloud engineering, routing & switching, access-Lists, NAT and other networking concepts.
• Understanding of application tiers & segmentation.
• Understanding of service-oriented architecture.
• Understanding of web services security.
• Extensive experience and expertise working with information security solutions, including data loss prevention, intrusion detection and prevention, network security monitoring and vulnerability management amongst others.
• Experience in implementing security controls using standards such as PCIDSS, ISO 27001 and ISO 22301 is an added advantage.
• Be proactive, very observant, pay close attention to details, have an analytical mind, good problem-solving skills, risk intolerant and process driven.
• You live and breathe security; you have bags of energy and obsess about security & trust!
• Certifications such as CompTIA Security+, CompTIA A+, CCNA, CCNP, CCSA, CEH, Fortinet NSE, PCNSE, CHFI, CISSP are an added advantage.

Nice to haves

• Crypto experience
• Fintech experience