Senior Cybersecurity Specialist

Job Summary:

We are seeking a highly motivated Cybersecurity Analyst to protect our organizations IT infrastructure, data, and systems from cyber threats. The ideal candidate will be responsible for monitoring, analyzing, and responding to security events, as well as improving our overall security posture through tools, processes, and training.

Role & responsibilities

• Monitor security alerts, logs, and events from firewalls, IDS/IPS, EDR, and SIEM systems.
• Investigate and respond to security incidents, perform root cause analysis, and recommend corrective actions.
• Conduct vulnerability assessments and penetration testing, coordinate remediation activities.
• Manage endpoint protection, email security, and network security tools.
• Assist in the development and enforcement of security policies, standards, and procedures
• Support and maintain cybersecurity policies, procedures, and standards.
• Conduct security awareness training and phishing simulations for employees.
• Participate in audits, compliance reviews (e.g., ISO 27001, GDPR, SOC 2), and risk assessments.
• Participate in red/blue team exercises and tabletop simulations.
• Stay updated with current cyber threats, tactics, vulnerabilities, and best practices.
• 7+ years of experience in cybersecurity roles, with at least 2 years in a senior or lead capacity
• Deep understanding of network security, cloud security, and endpoint protection
• Expertise in security frameworks and standards (e.g., NIST, CIS, MITRE ATT&CK)
• Hands-on experience with SIEM platforms firewalls, and vulnerability management tools
• Strong knowledge of identity and access management (IAM), encryption, and secure coding practices
• Industry certifications such as CISSP, CISM, OSCP, or equivalent

IT Governance & Compliance:

• Develop, implement and maintain IT governance frameworks (COBIT, NIST, ISO 27001, etc.).
• Ensure compliance with applicable regulations and standards (e.g., GDPR, HIPAA, SOX, PCI-DSS).
• Own the policy lifecyclecreation, review, and enforcement of IT security and governance policies.
• Lead internal and external IT audits and risk assessments, coordinate remediation activities.
• Maintain and manage an enterprise-wide IT risk register.

Preferred candidate profile

• Bachelor's/masters degree in computer science, IT, Cybersecurity, or related fields.
• 812 years of experience in IT infrastructure and cybersecurity, with at least 3 years in a leadership role.
• 8+ years of experience in cybersecurity, IT governance, risk management, or compliance.
• Strong technical knowledge of:
• Network and firewall architecture
• Microsoft/VMware/Linux server platforms
• Cloud services (AWS/Azure/GCP)
• Security technologies (SIEM, EDR, IAM, VPN, DLP, etc.)
• Familiarity with security frameworks (e.g., NIST, ISO 27001, CIS Controls).
• Hands-on experience in incident response and forensic analysis.
• In-depth understanding of cybersecurity principles, IT audit, GRC tools, and enterprise security architectures.