Contour Software logo

IT Security Engineer

Contour Software

Posted 3 days ago

About this role

About Contour

Contour Software has grown from a dozen people to over 2,000 staff across 3 cities, in less than 14 years.
 

As a subsidiary of Constellation Software Inc., we are proud to be part of a global enterprise software conglomerate that has grown to become one of the top 10 software companies in the world, with employees and customers in 100+ countries. With a broad-based and ever-growing portfolio of market-leading, vertical-market enterprise solutions covering more than 100 industry domains in predominantly mature markets, CSI's recipe creates the perfect environment for professionals to build fulfilling, long-term careers.
 

What started as an R&D & Accounting back-office, has progressed into a full-service Global Centre serving all functions and departments, at the divisional as well as operating group/corporate level. Today Contour employees, located in Karachi, Lahore & Islamabad, are serving CSI divisions located in time zones spanning the globe, from Sydney to Vancouver. With the global growth of Constellation as the wind in our sails, we are only just getting started!

The Division  

Jonas Club, a division of Jonas Software, an operating group of Constellation Software Inc, has helped over 2,300 clubs around the world discover the right mix of software solutions to optimize the management of their unique businesses. We have achieved this by providing, and customizing, a fully integrated suite of applications designed to manage business areas such as Accounting & Membership, Food & Beverage, Retail Sales, Spas, Gyms, Fitness Centers & Classes, Payroll, Employee Management & HR, Hotels, Marinas & more.

Job Overview  

The IT Security Engineer is responsible for proactively maintaining our information security systems, processes, and procedures to protect and preserve the confidentiality, integrity, and availability of all data and systems. This position will also drive company-wide support for security programs through the operationalization and documentation of all security-related tasks, working very closely with development & operations teams, product owners, and other groups. 

ESSENTIAL DUTIES AND RESPONSIBILITIES 

  • Reviews current corporate policies and helps redefine policies and procedures 

  • Stays current on IT security trends and news 

  • Manages security monitoring and threat detection systems for cloud environments 

  • Proactively updates and maintains tools for monitoring and support 

  • Supports cloud compliance/certification activities and participates in security audits/reviews. 

  • Provides consulting and influences other teams to mature cloud/DevOps security. 

  • Serves as a security expert and provides technical leadership to other staff members. 

  • Conducts security reviews of web applications, services, integrations, and APIs 

  • Pinpoints methods and attack surfaces attackers use to exploit weaknesses and logic flaws 

  • Conducts Cloud & Network infrastructure reviews, Systems infrastructure, Application configurations, and Software Code reviews. 

  • Reviews maintain and enhance current scanning and testing tools 

  • Verifies security vulnerabilities identified by automated tools 

  • Performs manual testing to supplement results of automated scanning and testing tools 

  • Documents identified security vulnerabilities and related matters in a clear, concise, and timely manner 

  • Meet with the operations and application teams to review and explain identified security vulnerabilities and possible remediation 

  • Resolves issues and provides statuses that may impact testing 

  • Applies fixes and remediation for detected vulnerabilities to maintain a high-security standard 

  • Organizes/facilitates retest of infrastructure, system, and application updates or deployed remediation logic to verify resolution of security vulnerabilities 

  • Maintains electronic or trail of testing activity for audit purposes 

  • Maintains confidentiality of authentication credentials, sensitive application information, and test results before, during, and after completing testing and/or retesting 

  • Investigates potential security breaches and other cybersecurity incidents 

  • Works with R&D, Cloud, Support, and QA Teams to perform tests and uncover potential network/systems/application vulnerabilities 

Qualifications for Security Engineer  

  • At least 2 years of experience in the cybersecurity industry 

  • Strong understanding of security controls/services in public cloud environments (Azure) 

  • Ability to prioritize projects and Comfortable working in a fast-paced environment 

  • Experience with other security solutions, such as EDR, SASE, firewalls, DLP, NAC, IDS/IPS, and vulnerability assessment tools 

  • Certifications such as CISSP, GSEC, CEH, or CISM desired 

  • Experience with GRC tools such as Vanta or Drata 

  • Strong understanding of web application security assessment techniques. 

  • Knowledge of static and dynamic security analysis tools. 

  • Knowledge of the Security Development Lifecycle (SDLC). 

  • Understanding the best practices, control frameworks, and applicable existing and new legal/regulatory requirements 

  • An understanding of best practices and how to implement them at a business-wide level 

  • Public Trust security clearance, or a willingness to obtain one 

  • Critical thinking skills and the ability to solve problems as they arise 

  • Basic coding skills, such as HTML, CSS, and other languages 

 

Exciting Benefits we offer:

  • Market-leading Salary

  • Medical Coverage – Self & Dependents

  • Parents Medical Coverage

  • Provident Fund

  • Employee Performance-based bonuses

  • Home Internet Subsidy

  • Conveyance Allowance

  • Profit Sharing Plan [Tenured Employees Only]

  • Life Benefit

  • Child Care Facility

  • Company Provided Lunch/Dinner

  • Professional Development Budget

  • Recreational area for in-house games

  • Sporadic On-shore training opportunities

  • Friendly work environment

  • Leave Encashment

Disclaimer: At Contour, we attribute our success to the unique contributions of our diverse staff. We’re committed to fostering a culture of respect that thrives on the varied perspectives and experiences of all individuals we recruit, employ, promote, and compensate. Since day one, we’ve adhered to a policy that champions a work environment honoring the worth and dignity of each person while being free from all forms of employment discrimination.

In our continuous effort to promote inclusivity, we extend our commitment to individuals with special needs by providing reasonable accommodations. We actively encourage qualified individuals with special needs to apply for the various openings within our company. Should you require assistance in completing the application process or have any inquiries regarding special facilities, please do not hesitate to contact our HR team. Your unique talents and abilities are welcomed and valued here.

Job details

Workplace

Office

Location

Karachi, PK, Pakistan

Job type

Full Time

Similar

Company

Website

Visit site

Twitter

@ContourSoftware

Jobr Assistant extension

Get the extension →