Cyber Security Engineer (5-7 yrs)

Job Description :

We are seeking a highly skilled and detail-oriented Cyber Security Engineer to safeguard our organization's information systems and data.

This role requires proficiency in security tool implementation, threat detection, incident response, regulatory compliance, and cloud security.

The ideal candidate will have a strong understanding of various security technologies and the ability to manage projects, assess vendors, and continuously improve the organization's security posture.

Core Competencies :

- Building Effective Teams : Cultivates strong morale within the team; fosters open communication and a sense of belonging.

- Customer Focus : Committed to meeting the needs of internal and external customers, ensuring satisfaction.

- Drive for Results : Exceeds goals consistently, focusing on bottom-line performance and pushing self and others for outstanding results.

- Ethics and Values : Upholds core values and beliefs, even during challenging times, demonstrating integrity and professionalism.

- Managing Vision and Purpose : Inspires and motivates teams by creating a sense of purpose and vision.

PSC Administrator Competencies :

- Adaptability : Maintains effectiveness when experiencing changes in work responsibilities, environment, or structures.

- Communication : Clearly conveys information through various media, engaging audiences and ensuring understanding.

- Managing Work : Effectively manages time and resources to complete tasks efficiently and on schedule.

- Quality Orientation : Focuses on accuracy and thoroughness, showing concern for all aspects of the job and ensuring high-quality outcomes.

- Work Standards : Sets and maintains high standards of performance for self and others, taking responsibility for tasks and results.

Essential Responsibilities :

Security Tool Implementation :

- Deploy and manage security tools, including SIEM, EDR, firewalls, IDPS, and WAF.

- Ensure these tools are properly configured, optimized, and maintained to provide robust protection.

Security Monitoring and Threat Detection :

- Continuously monitor security alerts and events to identify and respond to potential threats.

- Maintain and tune security monitoring systems to ensure maximum performance and efficiency.

Incident Response :

- Participate in responding to and investigating security incidents.

- Document incidents thoroughly, report findings, and assist with remediation and recovery efforts.

Regulatory Compliance :

- Support efforts to comply with regulations such as HIPAA, HITECH, SOC 2, and others.

- Perform security assessments and audits to ensure adherence to regulatory standards and best practices.

Vendor and Supply Chain Assessment :

- Conduct security assessments of third-party vendors and supply chain partners.

- Develop and manage a vendor risk management program to ensure external partners meet security standards.

Project Coordination :

- Coordinate security-related projects, ensuring they are completed on time, within scope, and aligned with organizational goals.

- Collaborate with cross-functional teams to ensure security requirements and deliverables are met.

Cloud Security :

- Secure cloud environments (AWS, Azure, GCP) by implementing security controls and best practices.

- Monitor and manage cloud security configurations to prevent vulnerabilities and breaches.

Continuous Learning and Development :

- Stay up-to-date on emerging cybersecurity threats, trends, and technologies.

- Participate in professional development and training to enhance technical skills and industry knowledge.

Qualifications :

- Strong knowledge and hands-on experience with security tools such as SIEM, EDR, firewalls, IDPS, and WAF.

- In-depth understanding of regulatory frameworks such as HIPAA, HITECH, and SOC 2.

- Experience securing cloud environments such as AWS, Azure, or GCP.

- Proven ability to handle security incidents, including investigation, documentation, and remediation.

- Solid project coordination skills and the ability to work cross-functionally with other teams.

- Relevant certifications such as CISSP, CISM, or CompTIA Security+ are a plus.

Skills :

- Security Tool Implementation and Management

- Incident Detection and Response

- Regulatory Compliance (HIPAA, SOC 2, etc.)

- Vendor and Supply Chain Risk Management

- Cloud Security (AWS, Azure, GCP)