Senior Engineer - Security

About the Job
KATIM is a leader in developing innovative secure communication products and solutions for governments and businesses. As part of the Space & Cyber Technologies cluster at EDGE, one of the world’s leading advanced technology groups, KATIM is dedicated to delivering trust in a world where cyber risks are a constant threat. This commitment fulfills the increasing demand for advanced cyber capabilities by providing robust, secure, end-to-end solutions centered on four core business units: Networks, Ultra Secure Mobile Devices, Applications, and Satellite Communications. KATIM brings the energy of a start-up with the discipline of a large business, allowing our talented team of cross-functional experts to tackle new challenges and create effective solutions at scale.

As a Senior Security Engineer, you will play a pivotal role in safeguarding KATIM's infrastructure and products. Your responsibilities will include designing, implementing, and managing sophisticated security measures to defend against evolving threats. The ideal candidate will have a comprehensive understanding of security principles and standards, hands-on expertise with security technologies, and a proven ability to lead projects and deliver results within deadlines. Collaboration with cross-functional teams is essential to ensure that security is seamlessly integrated into every aspect of our technological framework.

Key Responsibilities

• Develop and implement robust security architectures for KATIM’s systems and applications to align with industry best practices and regulatory requirements.
• Create and maintain comprehensive documentation for security architectures and solutions.
• Oversee and contribute to the configuration and operation of security tools and technologies, including firewalls, IDS/IPS, WAF, and endpoint protection solutions.
• Ensure the confidentiality, integrity, and availability of on-premise and cloud environments.
• Establish new network security standards, including policies and guidelines for security devices.
• Collaborate with development and infrastructure teams to integrate security best practices into system designs.
• Evaluate solutions from a security perspective and provide assessment reports.
• Oversee the identification, assessment, and remediation of security vulnerabilities across all systems and networks.
• Review and audit security implementations to ensure compliance and effectiveness.
• Ensure compliance with industry standards, regulations, and frameworks (e.g., ISO 27001, NIST).
• Communicate security risks and updates to management and stakeholders.
• Conduct security training and awareness programs for employees.
• Stay informed about the latest security trends to enhance the organization’s security posture.
• Propose and implement improvements to existing security processes and technologies.

Education and Minimum Qualifications

• Bachelor's or Master's degree in Computer Science or a related field.
• 8-10 years of experience in developing, operating, and maintaining security technologies.
• Strong understanding of web application security and mobile application security, including OWASP Top 10.
• Familiarity with threat modeling techniques such as STRIDE, DREAD, or PASTA.
• Knowledge of cryptographic tools and techniques.
• Experience with cloud security, container security, and API security.
• Familiarity with DevSecOps practices and CI/CD processes.
• Experience with security tools such as DAST, SAST, and open-source tools like Burp Suite and Metasploit.
• Familiarity with administrative tasks within operating systems like RHEL and Ubuntu.

Key Skills

• Excellent written and verbal communication skills.
• Strong problem-solving skills and attention to detail.
• Relevant certifications such as CISSP, CISM, OSCP, or CEH are a plus.