Cyber Security Engineer (4-6 yrs)

Job Description :

Responsibilities :

- Design, implement, and manage security infrastructure, including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, SIEM, and vulnerability scanners.

- Configure and maintain security tools and technologies to optimize performance and effectiveness.

- Monitor security systems for anomalies and potential threats, and respond promptly to security incidents.

- Conduct security assessments, vulnerability scans, and penetration testing to identify and mitigate security risks.

- Analyze security logs and alerts to detect and investigate suspicious activity.

- Develop and implement incident response plans and procedures, and participate in incident handling and remediation efforts.

- Perform forensic analysis to determine the root cause of security breaches.

- Assist in the development and maintenance of security policies, standards, and procedures.

- Conduct security awareness training for employees.

- Perform regular vulnerability assessments and penetration testing.

- Prioritize and remediate identified vulnerabilities.

- Keep up to date on new vulnerabilities and exploits.

- Contribute to the design and implementation of secure network and system architectures.

- Evaluate and recommend security technologies and solutions.

- Participate in security reviews of new and existing systems.

- Prepare and maintain accurate and up-to-date documentation of security systems, policies, and procedures.

- Generate regular security reports and metrics for management.

- Document incident response procedures and lessons learned.

Technical Skills :

- Proficiency in network security concepts and technologies (firewalls, IDS/IPS, VPNs, etc.).

- Experience with security tools and technologies (SIEM, vulnerability scanners, endpoint protection, etc.).

- Knowledge of operating systems (Windows, Linux, macOS) and network protocols.

- Understanding of common security threats and vulnerabilities (e.g., OWASP Top 10).

- Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.

- Cloud security experience (AWS, Azure, GCP) is a plus.

Certifications (Preferred) :

- CompTIA Security+

- Certified Ethical Hacker (CEH)

- Certified Information Systems Security Professional (CISSP)

- GIAC certifications (e.g., GSEC, GCIA, GCIH)

- Cloud specific security certifications.