Senior Cybersecurity Engineer

Job Description

Required Qualifications

• 7+ years’ hands-on experience in cybersecurity / security operations / security engineering, including time in a senior or lead capacity.
• Demonstrated experience implementing and evidencing controls under PCI DSS (and/or ISO 27001, NIST CSF, CIS Benchmarks).
• Proven incident-response ownership across the full lifecycle, from triage to post-incident review.
• Experience working alongside or managing an MDR / managed SOC service, including escalation governance and SLA oversight.
• Degree in Computer Science, Information Security or a related field, or equivalent practical experience.

Required Skills & Competencies

• Deep, hands-on SIEM/XDR and EDR operation, tuning and detection engineering.
• Administration of email security, DLP, SASE and VPN platforms.
• WAF, API security and DDoS mitigation (Cloudflare or comparable edge platforms).
• Strong grasp of network-security fundamentals — TCP/IP, DNS, HTTP/S — and common attack techniques.
• Excellent documentation (SOPs, runbooks, incident reports) and calm, clear stakeholder communication under pressure.

Nice-To-Have And Preferred

• Hands-on Check Point Harmony (Endpoint, Email & Collaboration, SASE) and/or Check Point managed-services experience; Cloudflare Enterprise (WAF, DDoS, Bot Management).
• Industry certifications (CISSP, GIAC GCIH/GCIA/GMON, Check Point, Cloudflare, Security+) and prior payment-gateway, fintech or PCI DSS Level 1 experience.

Job Responsibilities

• Serve as the senior in-house L2/L3 escalation point during business hours and own incident response end-to-end: triage, containment, eradication, recovery, root-cause analysis and post-incident review.
• Act as technical owner of the co-sourced MDR / managed security service providing out-of-hours L1/L2 coverage — maintain the escalation matrix, validate handoffs and oversee service quality and SLAs across the 24/7 window.
• Operate, tune and harden the enterprise security stack (SIEM/XDR, EDR, email security, DLP, SASE/VPN, WAF, DDoS) and maintain detection content, correlation rules and incident-response playbooks.
• Drive the implementation and evidencing of PCI DSS technical controls (Requirements 1, 4, 5, 7, 8, 10, 11, 12) with the Cybersecurity Lead and QSA, including Cloudflare Layer 7 / WAF / DDoS architecture input.
• Review phishing and suspicious email, investigate malware and anomalous behaviour, handle senior security tickets, and support periodic access reviews and audits.
• Author and maintain SOPs, runbooks and incident reports; mentor operational staff and reduce single-point-of-failure risk.

Job Benefits

• Competitive salary package aligned with experience and market standards.
• Medical Insurance starting from day 1.
• Access to training resources and development opportunities that support your professional growth.
• Well-stocked office with snacks, drinks, and refreshments available daily.
• A multinational organisation that promotes a strong, collaborative culture
• Regular team-building events and company activities that strengthen collaboration across teams.
• Employee Recognition Program celebrating our "Employee of the Month" with special perks.