CIS Security Engineer

Oeiras, PT Deadline: 07-05-2026 Updated: 28-04-2026 #16690

C004816, CIS Security Engineer

Duties & Responsibilities

  • Support the definition, design, procurement/development, and implementation of secure Communications and Information Systems (CIS).
  • Ensure compliance with CIS security accreditation policies and maintain appropriate security risk levels.
  • Conduct and document security risk assessments and policy compliance to support system accreditation.
  • Collaborate with the CTO’s CIS Planning and Implementation Authority (CISPIA) to deliver secure CIS solutions aligned with organizational guidance.
  • Integrate cybersecurity measures throughout the full system lifecycle (from design to operation).
  • Represent the organization in CIS security governance forums and stakeholder engagements.
  • Develop and manage required security accreditation documentation, including:
    • CIS Description
    • Security Accreditation Plan (SAP)
    • Security Risk Assessment (SRA)
    • Security Requirement Statements (SRSt)
    • Security Operating Procedures (SecOPs)
    • Security Test & Verification Plan (STVP)
    • Security Test & Verification Report (STVR)

Requirements

Education & Experience

  • Bachelor’s degree in a relevant field minimum 4 years of related experience,
    OR
  • No degree, but at least 8 years of extensive, progressive relevant experience.

Technical Knowledge

  • Strong understanding of cybersecurity domains, including:
    • Boundary protection
    • Encryption
    • Identity & access management
    • Monitoring & detection
    • Incident response
    • Vulnerability assessment
    • Risk management
  • In-depth knowledge of:
    • CIS security principles
    • Networking
    • Vulnerabilities in modern operating systems and applications

Professional Experience

  • At least 4 years of experience in:
    • Cybersecurity principles, technologies, and best practices
    • CIS security controls (traditional and cloud environments)
    • Designing, implementing, testing, and validating security components
    • Conducting security risk assessments and supporting accreditation processes
    • Identifying threats, vulnerabilities, and residual risks with mitigation recommendations
    • Supporting security accreditation in large-scale CIS projects
    • Using risk assessment methodologies and tools

Additional Skills

  • Experience in:
    • Writing and enforcing security policies and procedures
    • Compliance audits (e.g., ISO 27001, NIST 800-53, GDPR)
    • Governance, Risk, and Compliance (GRC)
  • Strong communication and technical writing skills

Certifications (Desirable)

  • Certifications such as:
    • CISA (Certified Information Systems Auditor)
    • CISSP (Certified Information Systems Security Professional)

 

Apply for this position

Back