Cyber Security Engineer

Key Responsibilities

1. Security Operations & Monitoring

Manage and monitor Endpoint security, EDR (Crowdstrike), SIEM, and SOAR platforms for threat detection, correlation, and automated response.

Create and design Rule , Policies and Paybooks, manage SoC operation

Conduct threat hunting exercises using MITRE ATT&CK framework and CVE intelligence.

Manage and monitor Data Loss Prevention (DLP) solutions, endpoint protection, and log monitoring tools.

Analyze suspicious activity, perform incident response, root cause analysis, and prepare post-incident reports.

2. Vulnerability & Risk Management

Perform Vulnerability Assessment and Penetration Testing (VAPT) on applications, networks, and infrastructure.

Use tools like Kalilinux, OWASP ZAP, Nessus, Qualys, Burp Suite, Nmap, and Wireshark etc for scans and exploitation.

Track, prioritize, and remediate vulnerabilities in coordination with Infra, DevOps, and Development teams.

3. Application Security

Perform the Periodic vulnerability scan of internal application

Conduct application security reviews in line with OWASP Top 10 standards.

4. Network Security

Review and optimize firewall (Checkpoint) rules, IDS/IPS, VPN, and access control policies.

Ensure secure network architecture by analyzing the traffic

Administration and configuration of Firewall and other security tools

5. Administrative & Process Responsibilities

Manage user access control, privilege management, and segregation of duties.

Perform the POC and security solution exploration

Maintain an updated inventory of assets, software, and security tools.

Prepare weekly/monthly reports on security metrics, vulnerabilities, and incidents. Coordinate with vendors, auditors, and internal stakeholders for security-related projects.

Support and maintain compliance with ISO 27001, GDPR , NIST etc..

Maintain security documentation: reports, policies, baselines, and SOPs.

Participate in risk assessments, internal audits, and security awareness training.

Required Skills & Knowledge

Strong understanding of network architecture, TCP/IP, protocols (HTTP, DNS, SMTP, SSL/TLS, etc.).

Expertise in Linux and Windows operating systems (Administration, security hardening, logs, services).

Hands-on with Antivirus, EDR, SIEM, SOAR, DLP, WAF, IAM, and vulnerability management tools. Hands-on on various Cyber security tools like Bupsuit, Npam, Wireshark, Nessus, Qualis, Kalilinux,

Deep knowledge of CVE databases, threat intelligence, and malware analysis basics.

Familiarity with Zero Trust, Defense-in-Depth, and Cloud Security principles.

Understanding of Global security standards

Certifications

CEH, CompTIA Security+, Pentest+.OSCP, CASE, CAP. Educational

Qualification

Bachelors degree in Computer Science, Information Security, IT, or equivalent.

Advanced degree in Cybersecurity is a plus.

Key Competencies

Strong analytical and problem-solving skills.

Excellent written and verbal communication for reporting and stakeholder interaction.

Ability to work under pressure, prioritize, and manage multiple security tasks.

Learning capabilities