ICT Security Engineer - #1163880

Role Summary

The ICT Security Engineer is responsible for the administration, configuration, hardening, and security of the organisation's IT infrastructure. This role encompasses end-to-end system lifecycle management —from physical rack and stack installation through to secure configuration, ongoing maintenance, and incident response. The engineer ensures that all systems meet security baselines and compliance requirements while maintaining operational reliability.

Key Responsibilities

System Administration

• Administer and maintain servers, operating systems, and network infrastructure (Windows Server, Linux/Unix).

• Monitor system performance, uptime, and capacity; plan and implement upgrades as required.

• Manage user accounts, access controls, and directory services (Active Directory, LDAP).

• Perform routine maintenance including patching, backups, and system health checks.

• Document system configurations, changes, and procedures in accordance with IT governance standards.

Infrastructure Build &Deployment

• Plan, build, and configure server environments in on-premises and/or cloud environments.

• Perform physical installation of equipment including rack and stack, cabling, and power management.

• Configure network devices such as switches, routers, and firewalls during infrastructure build-outs.

• Coordinate with vendors and stakeholders for hardware procurement and deployment timelines.

Security Engineering &Hardening

• Develop and apply security baselines and configuration hardening standards (e.g. CIS Benchmarks, DISA STIGs).

• Implement and maintain security controls including firewalls, IDS/IPS, endpoint protection, and SIEM solutions.

• Conduct vulnerability assessments and remediate identified risks in a timely manner.

• Manage patch cycles and enforce software update policies across all managed systems.

• Configure and enforce encryption standards for data at rest and in transit.

Troubleshooting &Incident Response

• Diagnose and resolve hardware, software, and network faults across the infrastructure.

• Respond to and investigate security incidents, escalating where necessary and producing incident reports.

• Participate in on-call rotations for critical system support and emergency response.

• Conduct root cause analysis post-incident and implement corrective measures.

Compliance &Governance

• Ensure systems comply with applicable security policies, standards, and regulatory requirements.

• Support internal and external audits by providing documentation and technical evidence.

• Maintain accurate asset inventories and configuration management records (CMDB).

• Contribute to the development and review of security policies and standard operating procedures.

Requirements

Qualifications

• Diploma or Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or a related field.

• Relevant certifications preferred: CompTIA Security+, CISSP, CEH, RHCE, MCSE, or equivalent.

Experience

• Minimum 3 years of experience in system administration or ICT infrastructure roles.

• Hands-on experience with server hardware installation, rack and stack, and data centre operations.

• Demonstrated experience in security hardening of Windows and/or Linux environments.

• Experience with virtualisation platforms (VMware, Hyper-V) and cloud environments (AWS, Azure) is advantageous.

Technical Skills

• Proficiency in Windows Server and Linux operating system administration.

• Strong knowledge of network protocols, TCP/IP, DNS,DHCP, VPN, and firewall management.

• Experience with security tools: SIEM, vulnerability scanners, endpoint detection and response (EDR) platforms.

• Familiarity with scripting and automation (PowerShell, Bash, Python) for system administration tasks.

• Knowledge of PKI, certificate management, and identity& access management (IAM) principles.

Soft Skills

• Strong analytical and problem-solving skills with a methodical approach to troubleshooting.

• Able to work independently and collaboratively in a team environment.

• Good written and verbal communication skills for documentation and stakeholder interaction.

• Ability to prioritise and manage multiple tasks under pressure in a fast-paced operational environment.

Preferred Attributes

• Experience working in a high-security environment.

• Familiarity with zero-trust architecture principles and implementation.

• Exposure to OT/ICS environments or critical infrastructure protection is a plus.

• Prior experience with security compliance frameworks such as ISO 27001, NIST, or MAS TRM.