Some of the duties and responsibilities security engineers have:

    • developing a set of security standards and practices
    • creating new ways to solve existing production security issues
    • recommending security enhancements to management
    • installing and using software, such as firewalls and data encryption programs
    • assisting with installation or processing of new security products and procedures
    • conducting scans of networks to find vulnerabilities
    • conducting penetration testing
    • monitoring networks and systems for security breaches or intrusions
    • installing software that helps with notification of intrusions
    • developing automation scripts to handle and track incidents
    • testing security solutions using industry standard analysis criteria
    • watching out for irregular system behaviour
    • supervising changes in software, hardware, and user needs
    • leading incident response activities
    • leading investigations into how breaches happen
    • reporting findings to management
    • helping plan an organization’s information security strategy
    • educating staff members on information security through training and awareness
    • recommending modifications in legal, technical and regulatory areas