Roles & Responsibilities
- Conduct thorough security audits to identify vulnerabilities and implement actionable improvements.
- Develop and enforce robust Privilege Access Management (PAM) strategies to protect sensitive resources.
- Create and maintain Security Hardening Guidelines in compliance with CIS or SITG Benchmarks, ensuring secure configurations across all systems.
- Design and deploy automated processes for cybersecurity tasks using Python scripting.
- Manage the organization’s Vulnerability Management Program, including regular scanning, assessment, remediation, and reporting.
- Implement and oversee Security Automation processes to streamline threat detection, incident response, and compliance checks.
- Continuously monitor security systems to detect, respond to, and resolve potential incidents promptly.
- Respond to cybersecurity incidents with effective containment, resolution, and detailed after-action reporting.
- Collaborate with IT, DevOps, and other teams to embed security practices into all phases of the SDLC.
- Monitor and maintain security tools such as SIEM, IDS/IPS, DLP, and endpoint protection solutions.
- Oversee the design, implementation, and management of security architectures for cloud-based and on-premise infrastructures.
- Perform periodic reviews of firewall configurations, user access controls, and other security mechanisms to optimize protection.
- Maintain the organization’s cybersecurity framework and ensure alignment with industry standards and regulations.
- Proactively evaluate and deploy emerging cybersecurity technologies to mitigate evolving threats.
- Act as the primary contact for security incidents and collaborate with external teams for escalated support.
- Provide leadership in implementing threat intelligence strategies, ensuring continuous improvement of the organization's security posture.
Skills & Technologies Required
- Threat Detection and Response using any of these tools (Microsoft Defender XDR, Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft Defender for Endpoint).
- Vulnerability Management using any of these tools (Nessus, Qualys, OpenVAS).
- Privilege Access Management (PAM) using any of these tools (Wallix, CyberArk, BeyondTrust).
- Security Automation and Orchestration using any of these tools (Python, Splunk Phantom, Cortex XSOAR, Azure Sentinel ).
- DevSecOps using any of these tools (SonarQube, GitHub Actions, AWS CodePipeline).
- Security Hardening and Compliance using any of these tools (CIS Benchmarks, SITG Benchmarks, Qualys Policy Compliance).
- Cloud Security using any of these tools (AWS Security Hub, Azure Security Center, Microsoft Defender for Cloud).
- Network Security using any of these tools (Palo Alto Networks, Fortinet, Cisco ASA, Snort, Suricata).
- Endpoint Security using any of these tools (Microsoft Defender for Endpoint, CrowdStrike Falcon, SentinelOne).
Qualifications
- Bachelor’s degree in computer science, information technology, cybersecurity, or a related field (master’s degree preferred).
Experience
- A minimum of 5–8 years of experience in cyber security.
About Application Process
If you meet the criteria and you are enthusiastic about the role, we would welcome your application. To complete the application you would need the following document(s):
- Resume/CV
- Passport-size photograph