Application Security Engineer

Job Purpose

Execute the Operations technical day-to-day work for security applications portfolio administration, management and update across the ENOC IT Infrastructure.

Principal Accountabilities

Data Leakage Prevention (DLP): Establish and maintain DLP policies to prevent unauthorized access, transmission, or disclosure of sensitive data, focusing on both on-premises and cloud environments.

Cloud Access Security Broker (CASB): Design, implement, and manage CASB solutions to control and monitor access to cloud applications and safeguard data across cloud services.

Endpoint Detection & Response (EDR): Implement, monitor, and optimize EDR solutions to ensure rapid detection and response to threats targeting endpoint devices.

Antivirus (AV): Deploy and manage antivirus solutions across all endpoint devices, ensuring up-to-date signature definitions and system protection against malicious software.

Application Whitelisting: Develop and enforce application whitelisting policies to limit executable files and software applications to only approved programs, reducing the risk of malware and unauthorized software installations.

Execute periodically reviews of applications configuration to ensure that security controls are effectively and efficiently configured.

Implement security measures for applications operation, deployment, and review in line with ENOC cyber security best practices and requirements.

Ensure compliance and adherence to ENOC's cyber security controls.

Operate and maintain the security applications portfolio, permissions and configuration in ENOC IT infrastructure.

Execute periodically reviews of applications configuration to ensure that security controls are effectively and efficiently configured.

Implement security measures for applications operation, deployment and review in line with ENOC cyber security best practices and requirements.

Review risk assessments and audit observations to implement mitigation actions to address identified gaps and coordinate the identified mitigation actions with all relevant stakeholders.

Participate in IT projects and changes to ensure proper implementation of cyber security requirements.

Agree with the Application Security Manager on performance management objectives and perform mid-year and year-end performance reviews.

Education

Degree: Minimum Bachelor's degree in Computer Science, Engineering or Business field or equivalent.

Experience

3 to 7 years of experience in implementing and administrating application security solutions.