Cyber Security Engineer

Overview

Key Responsibilities

• Coordinate internal and external audits and drive remediation activities.
• Lead Security Operations Center (SOC) activities including monitoring, threat detection, incident response, and threat hunting.
• Oversee SIEM, SOAR, XDR, EDR, DLP, WAF, MFA, NAC, and firewall technologies.
• Lead enterprise vulnerability management and security posture assessments.
• Support Zero Trust Architecture initiatives and security transformation projects.
• Review and validate security architecture, HLDs, and LLDs.
• Deliver cybersecurity awareness programs and mentor security team members.
• Develop, implement, and maintain cybersecurity policies, standards, and procedures.
• Monitor security events, alerts, and incidents using security monitoring tools (SIEM, EDR, IDS/IPS).
• Lead investigation, containment, eradication, and recovery activities for cybersecurity incidents.
• Conduct vulnerability assessments, risk assessments, and security reviews of systems, applications, and infrastructure.
• Coordinate and track remediation of identified security vulnerabilities and compliance gaps.
• Support the design and implementation of security controls across cloud, network, endpoint, and application environments.
• Perform security architecture reviews and provide recommendations for secure system design.
• Ensure compliance with regulatory requirements, industry standards, and organizational security frameworks (e.g., ISO 27001, NIST, CIS, PCI DSS).
• Manage and support security technologies such as firewalls, endpoint protection, identity and access management (IAM), DLP, and email security solutions.
• Conduct threat hunting and analyze emerging cyber threats, vulnerabilities, and attack techniques.
• Support third-party/vendor security assessments and supply chain risk management activities.
• Develop and maintain cybersecurity metrics, dashboards, and management reports.
• Participate in business continuity, disaster recovery, and cyber resilience planning and testing.
• Provide cybersecurity awareness training and guidance to employees and stakeholders.
• Collaborate with IT, risk, compliance, and business teams to ensure security requirements are integrated into projects and operations.
• Mentor junior cybersecurity analysts and contribute to the continuous improvement of security operations and processes.

Required Qualifications

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or related field.
• 10+ years of experience in Cyber Security, Security Operations, or GRC.
• Experience leading cybersecurity teams and managing enterprise security programs.

Professional Certifications

• CISSP
• CISM
• CEH
• CHFI
• CCNA