Cyber Security Engineer

Job Description

Job Overview As a Senior Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining robust security infrastructures to safeguard the organization's digital assets. You will lead initiatives to identify vulnerabilities, respond to incidents, and ensure compliance with industry standards and regulations. Key Responsibilities Security Architecture & Design: Develop and implement security solutions across IT and engineering environments, including firewalls, SIEM, IDS/IPS, and endpoint protection systems. Incident Response & Forensics: Lead investigations into security breaches, conduct root cause analysis, and develop mitigation strategies. Vulnerability Management: Perform regular vulnerability assessments, penetration testing, and manage patching processes to address potential threats. Security Monitoring: Oversee the deployment and tuning of security monitoring tools, ensuring effective detection and response capabilities. Policy Development: Create and maintain security policies, procedures, and documentation in alignment with industry standards like ISO 27001, NIST, and GDPR. Compliance & Audits: Ensure adherence to regulatory requirements and conduct internal audits to assess security posture. Team Leadership & Mentorship: Guide and mentor junior security engineers, fostering a culture of continuous improvement and learning. Stakeholder Collaboration: Work closely with IT, development, and operations teams to integrate security best practices into all aspects of the organization's infrastructure. Required Qualifications Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Experience: Minimum of 7 years in cybersecurity roles, with a focus on engineering, architecture, and incident response. Technical Skills: Proficiency with security tools such as SIEM (e.g., Splunk, QRadar), firewalls, IDS/IPS, and endpoint protection systems. Strong understanding of network protocols, encryption methods, and secure application development principles. Hands-on experience with cloud security platforms (AWS, Azure, GCP) and containerization technologies (e.g., Docker, Kubernetes). Scripting skills in languages like Python, PowerShell, or Bash for automation and tool integration. Certifications: Industry-recognized certifications such as CISSP, CISM, CEH, or GIAC are highly desirable. Preferred Qualifications Advanced Certifications: OSCP, GIAC Security Essentials (GSEC), Microsoft SC-200, or AZ-500. Specialized Knowledge: Experience with industrial control systems (ICS), OT security, and frameworks like IEC 62443. Analytical Tools: Familiarity with data analytics platforms like Tableau or Power BI for reporting and dashboard creation Show more Show less