CyberSecurity Engineer

Mô tả Công việc

· Security Architecture & Engineering:

o Plan, design, implement, and manage security measures for the protection of the organization’s data, systems, and networks.

o Maintain and optimize core security systems, including firewalls, IDS/IPS, Endpoint Detection and Response (EDR), SIEM, and VPN solutions.

o Collaborate with IT and DevOps teams to ensure the secure design and deployment of new applications and infrastructure.

o Implement and manage system hardening standards across Windows, Linux, and cloud environments.

· Security Operations & Incident Response:

o Monitor networks and systems for security threats and anomalies.

o Lead and participate in security incident response activities, including investigation, containment, remediation, and root cause analysis.

· Vulnerability & Risk Management:

o Conduct regular vulnerability assessments using industry-standard scanners.

o Prioritize and track the remediation of identified vulnerabilities with relevant teams.

o Coordinate and analyze the results of third-party or internal penetration tests, translating findings into actionable remediation plans.

· Policy & Compliance:

o Contribute to the development, enforcement, and updating of security policies, procedures, and best practices.

o Participate in change management processes, ensuring all changes comply with security standards.

o Act as a security subject matter expert, providing guidance and technical support to employees to promote security awareness.

Yêu Cầu Công Việc

Education & Experience

· Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a related field.

· Minimum of 5+ years of cyber security engineering experience or a role focused on network and system security management

· Proven ability to apply security concepts across diverse technical domains, including network infrastructure, operating systems (Linux/Windows), and cloud environments.

· Strong understanding of network protocols (TCP/IP, DNS, Routing) and experience with network security devices (Firewalls, IDPS, Load Balancers, VPN).

· Hands-on experience with industry-standard Vulnerability Scanners and proficiency in conducting Penetration Testing and interpreting results.

· Expertise in using and managing SIEM (Security Information and Event Management) systems, EDR (Endpoint Detection and Response) solutions, and analyzing security logs.

· In-depth knowledge of securing and hardening Windows Server and Linux environments.

· Experience with scripting languages (e.g., Python, Bash) for automation.

Preferred Qualifications

· Relevant certifications: CISSP, CISM, CCSP, OSCP, OSCE, GCIH, GCFA, GNFA, AWS Security Specialty, Azure Security Engineer, etc.

· Experience with SOAR platforms (Cortex XSOAR, Splunk SOAR, Demisto)

· Contributions to open-source security tools or published research/blog posts

· Experience securing Kubernetes/EKS/AKS/GKE environments

· Threat intelligence analysis experience (MITRE ATT&CK framework mastery)

Soft Skills

· Great Problem-Solving Skills

· In-depth technical knowledge of computer sciences

· Knowledge of Security Across Various Platforms

· Attention to Detail

· Communication Skills

· Fundamental Computer Forensics Skills

· Ethical hacking