Responsibilities :

- Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.

- Troubleshooting security and network problems.

- Responding to all system and/or network security breaches.

- Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.

- Participating in the change management process.

- Testing and identifying network and system vulnerabilities.

- Daily administrative tasks, reporting, and communication with the relevant departments in the organization.

- Conduct hands on security testing, analyse test results, document risks, and recommend counter measures.

- Researching, evaluating, and developing relevant Security Testing tools and methods.

Cyber Security Engineer Requirements :

- A degree in computer science, IT, systems engineering, or related qualification.

- Experience with incident detection, incident response, and forensics.

- Core experience and profound knowledge in application and infrastructure security testing.

- Strong understanding and hands on experience on application and infrastructure vulnerabilities, automated/manual testing, auditing and remediation techniques

- Strong understanding of OWASP, WASC 2.0 Threats classification

- Strong understanding of cryptography

- Experience with standard security tools such as Metasploit, SQLMap, Nmap, OWASP ZAP, Burp Suite etc.

- Experience with network/infrastructure vulnerability assessment tools such as Nessus, Qualys etc.

- Experience with establishing penetration testing procedures and processes.

- Experience with Firewalls (functionality and maintenance), Office 365 and Endpoint Security.

- Proficiency in any one of the scripting languages like Python, C++, Java, Ruby, Node, Go, and/or Power Shell

- Ability to work under pressure in a fast-paced environment.

- Strong attention to detail with an analytical mind and outstanding problem-solving skills.

- Great awareness of cybersecurity trends and hacking techniques.

Good To Have :

- Understanding of server and client-side application development.

- Experience with performing code review, wireless and firewall assessments.

- Technical knowledge in network security products, cryptographic suites and network/application firewalls.

- Experience in evasion techniques to bypass firewalls and intrusion detection systems.

- Experience with Mobile Application Penetration testing, APIs etc.

- Knowledge in Application Architecture Review, Threat Modelling concepts

- Security Certifications : OSCP, OSEE, OSCE etc