Key Responsibilities:
- Design, implement, and maintain security measures to safeguard the organization's systems, networks, and data.
- Conduct vulnerability assessments, penetration testing, and risk analysis.
- Monitor security alerts and respond promptly to incidents.
- Implement and manage firewalls, intrusion detection/prevention systems, and endpoint protection solutions.
- Collaborate with IT, DevOps, and other teams to ensure secure application and infrastructure deployments.
- Develop and enforce security policies, standards, and procedures.
- Stay current with emerging cybersecurity threats, tools, and regulatory requirements.
- Conduct security audits and prepare compliance reports.
- Mentor junior security engineers and contribute to team knowledge sharing.
Required Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, or related field.
- 6+ years of hands-on experience in cybersecurity engineering or a related role.
- Strong understanding of network protocols, firewalls, VPNs, IDS/IPS, SIEM systems, and endpoint security.
- Experience with vulnerability management tools (e.g., Nessus, Qualys, OpenVAS).
- Knowledge of security frameworks such as ISO 27001, NIST, CIS, or GDPR.
- Proficiency in scripting or programming languages (Python, Bash, PowerShell, etc.) for automation.
- Excellent problem-solving and analytical skills.
- Strong communication skills to report findings and advise stakeholders.
Preferred Qualifications:
- Certifications such as CISSP, CISM, CEH, OSCP, or equivalent.
- Experience in cloud security (AWS, Azure, GCP).
- Knowledge of DevSecOps practices and secure SDLC.
- Familiarity with threat intelligence platforms and incident response tools.
