Security Engineer

The Apex Group was established in Bermuda in 2003 and is now one of the world's largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That's why, at Apex Group, we will do more than simply 'empower' you. We will work to supercharge your unique skills and experience.

Take the lead and we'll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

Corporate Title: Security Engineer – Platform

Location: South Africa, India

About Apex

The Apex Group is a global financial services provider with over 10,000 staff across 50+ offices worldwide. At Apex, every employee contributes to our success. As we continue to grow, we seek bright, motivated individuals who thrive on challenges and want to be part of a dynamic, global team. We are currently looking for a junior to mid-level IAM/PAM Analyst to join our expanding Identity and Access Management team.

We are looking for a Security Engineer – Platform to join our growing Platform Security Engineering team, responsible for building, managing, and maturing Apex's global security tooling and controls across email, endpoint, network, cloud, and identity platforms.

The Role

As a Security Engineer – Platform, you will be responsible for the engineering, administration, and lifecycle management of Apex's security platforms, ensuring they are effectively deployed, tuned, and integrated into the security ecosystem. You will work closely with senior engineers, security operations, cloud teams, and business stakeholders to drive tool maturity, ensure control effectiveness, and support audit and compliance objectives.

This role goes beyond day-to-day administration – you will help shape how Apex secures its users, data, and infrastructure by improving platform design, automation, monitoring, and resilience.

Key Duties and Responsibilities

Security Tooling Ownership & Engineering

Serve as primary or secondary owner for one or more enterprise security platforms (Netskope, Proofpoint, Mimecast, Microsoft Defender, Qualys, Exabeam, CybSafe, CyberArk).

• Implement, configure, and maintain tools to meet evolving security and compliance requirements
• Drive platform integrations with SIEM, SOAR, and other enterprise services for automation and monitoring.
• Tune security policies to reduce false positives and improve detection accuracy.
• Platform Maturity & Lifecycle Management
• Support roadmap development and upgrades for security platforms.
• Partner with senior engineers to assess tool effectiveness and identify opportunities for consolidation or optimization.
• Deliver platform health monitoring, patching, and resilience improvements.
• Participate in proof-of-concept initiatives for new tools or major feature expansions.
• Operational Support & Continuous Improvement
• Act as escalation point for complex platform-related issues.
• Support incident investigations with platform expertise (email trace, endpoint logs, privileged access sessions, etc.).
• Develop and maintain engineering documentation, runbooks, and SOPs.
• Identify and implement automation opportunities to reduce manual effort and improve efficiency.
• Collaboration & Stakeholder Engagement
• Work with global teams to support platform adoption and knowledge sharing.
• Collaborate with compliance, risk, and audit teams to ensure controls are designed and evidenced appropriately.
• Provide input into security strategy, technical standards, and security architecture decisions.

Experience and Knowledge

• 5+ years' experience in Information Security, with hands-on exposure to enterprise security platforms.
• Strong technical understanding of at least two of the following areas:
  • Email Security (Proofpoint, Mimecast)
  • Endpoint & EDR (Microsoft Defender)
  • Network & Cloud Security (Netskope, Secure Web Gateway, CASB, ZTNA)
  • Vulnerability Management (Qualys)
  • SIEM & Security Analytics (Exabeam, Splunk, Sentinel)
  • Privileged Access Management (CyberArk)
  • Security Awareness Platforms (CybSafe or equivalent)
• Experience with identity and access control principles (RBAC, least privilege, PAM).
• Familiarity with cloud platforms (Azure, AWS, or OCI) and integration of security tools.
• Ability to troubleshoot, analyze logs, and resolve technical issues in enterprise environments.
• Knowledge of scripting/automation (PowerShell, Python, API integrations) is advantageous.
• Strong documentation, communication, and collaboration skills.
• A proactive, ownership-driven mindset with a focus on continuous improvement.

Qualifications

Essential:

• Bachelor's degree in Computer Science, Information Security, or related field; or equivalent practical experience.
• 5+ years of experience in Information Security, Security Engineering, or IT Security Operations.
• Hands-on experience with one or more enterprise security platforms (Netskope, Proofpoint, Mimecast, Microsoft Defender, Qualys, Exabeam, CyberArk, CybSafe).
• Strong understanding of security principles: least privilege, zero trust, identity and access management, defense-in-depth.
• Experience working with SIEM, log analysis, and incident investigation.
• Ability to troubleshoot complex issues across endpoints, networks, and cloud environments.
• Solid documentation and technical communication skills.
• Certifications:
  • CompTIA Security+
  • Tool-specific: CyberArk, Defender/Sentry, Netskope Certified Cloud Security Administrator, Proofpoint Email Protection, Microsoft Security certifications (SC-200, SC-300, SC-400), Qualys Certified Specialist
• Ability to work in a global, multicultural environment and handle multiple priorities.

Desirable / Nice to Have:

Relevant industry certifications, such as:

• CISSP, SSCP, CCSP or any other relevant Security certifications/qualifications
• Cloud: Microsoft Azure Security Engineer Associate, AWS Security Specialty
• Scripting or automation skills (Python, PowerShell, API integrations).
• Experience with SOAR platforms and automating security workflows.
• Exposure to compliance frameworks (ISO 27001, SOC2, GDPR) and audit processes.

What You Will Get in Return

• Exposure to a global enterprise security environment with diverse toolsets.
• Hands-on ownership of critical security platforms with opportunities to lead technical initiatives.
• Professional development opportunities and support for certifications (e.g., Microsoft, CyberArk, Netskope, Proofpoint, etc.).
• A supportive and positive work culture with growth potential.
• Involvement in shaping Apex's global security tooling maturity roadmap.

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.