Cyber Security Engineer

Role Objective:

The Cyber Security Engineer III is a senior-level position responsible for designing, implementing, and maintaining robust security solutions to protect our customers’ systems, networks, and data. This role will lead and execute complex security projects, provide technical guidance to junior team members, and collaborate with cross-functional teams to ensure the organization's security posture aligns with industry best practices. The Cyber Security Engineer III will leverage expertise in security technologies—such as Splunk, Tenable, Nessus, CrowdStrike, Wiz, and Axonius—to proactively identify and mitigate potential security risks and incidents. This role also involves direct server-side mitigation of vulnerabilities, secure cloud configuration, and hands-on vulnerability lifecycle management using tools like Tenable and Wiz.

Key Responsibilities:

• Leads the design, implementation, and maintenance of enterprise-wide security solutions, including but not limited to firewalls, intrusion detection/prevention systems, SIEM, endpoint protection, and secure network architectures.
• Performs advanced threat modelling and vulnerability assessments to identify security gaps and recommends appropriate controls and countermeasures.
• Leads and executes vulnerability management initiatives, including scanning, triaging, prioritizing, and remediating vulnerabilities on server and cloud environments using platforms like Tenable, Nessus, and Wiz.
• Monitors and analyses security events and alerts from Splunk, Tenable, CrowdStrike, Nessus, Wiz, and Axonius to detect and respond to potential threats.
• Develops and implements security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
• Conducts in-depth security incident investigations, including root cause analysis, post-mortem reviews, and mitigation strategies.
• Performs penetration tests or coordinates red-team activities to simulate real-world attacks and identify exploitable vulnerabilities, using tools like Burp Suite, Nmap, Metasploit, OWASP ZAP, and others.
• Develops and maintains secure configuration standards for cloud environments (AWS, Azure, GCP); implements and enforces controls to protect cloud assets from misconfigurations.
• Collaborates with cross-functional teams to evaluate, select, and deploy new security technologies, tools, and services.
• Partners with DevOps and infrastructure teams to integrate security into CI/CD pipelines and cloud deployments.
• Develops and delivers security awareness and training programs to educate employees on security best practices and policies.
• Participates in security audits and compliance assessments, ensuring adherence to relevant frameworks and regulations.
• Stays abreast of the latest security trends, vulnerabilities, and industry developments and makes recommendations for enhancing the organization's security posture.

Additional Specific Duties and Responsibilities:

• Performs On-call rotation with team members.
• Mentors and coaches junior security team members, fostering their professional growth and development.
• Collaborates with the Security Operations Centre (SOC) to enhance incident response capabilities and processes.
• Leads security-related projects, including planning, resource allocation, and timely execution.
• Collaborates with vendors and external partners to assess and improve the security posture of third-party systems and services.
• Prepares and presents comprehensive security reports and vulnerability metrics to senior management and stakeholders.
• Participates in incident response and recovery efforts, ensuring timely communication and documentation.
• Supports the creation of remediation playbooks, vulnerability lifecycle processes, and secure cloud architecture baselines.
• Collaborates with development, infrastructure, and cloud teams to implement remediation plans following vulnerability scans and penetration tests.

Required Experience & Qualifications:

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience).
• Minimum of 5 years of experience in information security, with a focus on designing and implementing security solutions.
• Strong hands-on expertise in security tools including Splunk, Tenable, Nessus, CrowdStrike, Wiz, and Axonius.
• Proven experience with vulnerability assessment and management, including prioritization, mitigation planning, and cross-team collaboration.
• Deep understanding of cloud security principles, secure configuration practices, and tools for AWS, Azure, and GCP.
• Solid understanding of network security principles, protocols, and technologies.
• Experience conducting penetration testing and familiarity with common tools and methodologies.
• In-depth knowledge of industry frameworks and regulations, such as NIST, ISO 27001, and GDPR.
• Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.
• Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.

Preferred Qualifications:

• Relevant certifications such as

  CISSP, CISM, CEH, OSCP, or GIAC

  .
• Experience with

  cloud security platforms

  (AWS, Azure, GCP).
• Knowledge of

  zero trust security architectures

  .
• Familiarity with

  compliance frameworks

  (ISO 27001, NIST, GDPR, PCI-DSS).