Rockland Distilleries (Pvt) Ltd, established in 1924, is a fourth generation family-owned company located in Colombo, Sri Lanka. It is the 2nd largest distillery in the country and is known for its high quality brands. Rockland manufactures and distributes a portfolio of local and imported spirits and fine wines through their in-house distribution network, making them one of the strongest distributors in Sri Lanka. The company is renowned for its integrity, professionalism, and well-run business practices.
Rockland Distilleries (Pvt) Ltd. is looking for a diligent and proactive Associate IT Security Engineer with a solid understanding of IT security methodologies. This role demands a detail-oriented individual with excellent
problem-solving skills who can thrive under pressure and work effectively with cross-functional teams. The
Associate IT Security Engineer will play a critical role in supporting the security posture of the e-Dine
organization, ensuring the protection of e-Dine’s IT infrastructure and data. The role requires the ability to
implement security measures, monitor potential threats, and respond swiftly to incidents.
Key Tasks/ Responsibilities:
Security Monitoring and Incident Response:
- Continuously monitor security systems including firewalls, IDS/IPS, and SIEM.
- Respond to security incidents promptly, conduct thorough investigations, and provide detailed RCA reports.
- Work with the Security Operations Center (SOC) for escalations and ensure comprehensive incident management.
Implementation and Maintenance of Security Protocols:
- Assist in implementing and maintaining security protocols such as access controls, encryption standards, and endpoint security.
- Regularly update security measures to protect against evolving threats and liaison with external contracted service partners to manage SOC related incidents.
Vulnerability Assessment and Penetration Testing:
- Participate in periodic vulnerability assessments and penetration testing
- Identify and document vulnerabilities and collaborate with relevant teams to implement remediation strategies.
Network and System Security Management:
- Support the management and security of network devices including firewalls,VPNs, and proxy servers.
- Assist in the creation, amendment, and suspension of firewall rules across all sites.
- Manage user accounts and maintain security configurations for endpoints and servers.
Collaboration and Communication:
- Work with internal e-Dine, Group IT and external vendors to ensure robust security practices.
- Participate in IT security councils and weekly meetings to discuss security issues and improvements.
Security Awareness and Training:
- Support the development and delivery of security awareness programs to educate employees.
- Conduct training sessions and provide resources on security best practices.
Compliance and Documentation:
- Ensure compliance with industry standards such as ISO 27001, PCI-DSS and company-specific policies.
- Maintain accurate and detailed documentation of security incidents, procedures, and configurations.
Support for IT Security Projects:
- Assist in various IT security projects,
- providing support and insights to the Group IT Security Engineer.
- Participate in the coordination and execution of on-demand projects related to IT security, IT security Audits and forensic studies.
Administrative and Support Duties:
- Execute policies, enroll and unenroll services for MDM application users, and manage antivirus solutions.
- Manage email spam filters and
- security-related license management.
- Handle day-to-day administrative tasks, reporting, and communication with relevant departments.
Educational Qualifications:
Required:
- Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
- Knowledge of cloud technology security, including Azure, is a plus.
- Familiarity with security tools such as firewalls, IDS/IPS, SIEM.
Preferred:
- Minimum 1 year Proven experience as a IT Security Rngineer role / Security Analyst.
- Certifications such as CISSP, CCNA, Firewall-specific certifications, CompTIA Security+, or CEH
- Knowledge of industry-standard security frameworks and best practices.
Skills and Competencies:
- Meticulous attention to detail and strong analytical skills.
- Ability to work independently and as part of a team in a fast-paced environment.
- Excellent communication skills, both written and verbal.
- Proactive and self-motivated approach to identifying and addressing security threats.
.png)
