Junior Security Engineer

• Act as the junior engineer in working with Senior elements in identifying, prioritizing, and remediating security issues raised by Prisma Cloud, Microsoft Sentinel, and Snyk;
  
• Partner closely with security, software engineering and DevOps teams to implement secure coding practices, fix vulnerabilities, and strengthen the overall security posture;
  
• Proactively monitor, analyze, and respond to security alerts and incidents, ensuring timely mitigation.
  
• Perform threat analysis, incident response, and vulnerability assessments, and propose actionable improvements;
  
• Using available tools.
  
• Promotes a DevSecOps adoption, embedding security controls and checks into existing CI/CD pipelines;
  
• Supports vulnerabilities addressing with technical teams to reinforce best practices in security;
  
• Continuously evaluate, test, and fine-tune tooling like Prisma Cloud and Snyk to ensure maximum effectiveness;
  
• Stay current with security trends, vulnerabilities, compliance regulations, and emerging tools. To push for other work and security improvements.
  

Requirements

• At least 1 years of experience in IT Security, preferably within software development or software house environments;
  
• Proficient in English spoken and written;
  
• Hands-on experience with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud;
  
• Proven experience in SIEM and SOC monitoring/response tools, especially Microsoft Sentinel;
  
• Baseline knowledge of Application Security and SCA/SAST/DAST solutions, particularly Snyk;
  
• Baseline knowledge understanding of secure SDLC practices, DevSecOps, and integrating security into CI/CD pipelines;
  
• 1+ experience with cloud platforms (Azure, AWS, or GCP), with baseline knowledge of identity, access management, and container security;
  
• Baseline knowledge in vulnerability management, threat modeling, and risk assessment;
  
• Foundational skills in scripting/automation (Python, PowerShell, or similar) for security tasks;
  
• Good communication skills to explain technical security risks and solutions to development, DevOps, and product teams;
  
• A problem-solving mindset and a collaborative approach to resolving security concerns.