Cybersecurity Engineer/Manager (tools and solutioning)
Key Responsibilities
Security Tools Engineering
Partner with vendors to evaluate and implement security solutions, driving projects from proof-of-concept (POC) to full deployment.
Ensure security tools are well-designed, thoroughly tested, and seamlessly integrated into operations.
Provide expertise in various security domains and collaborate with stakeholders to minimize the impact on other systems and users.
Manage and enhance endpoint protection platforms (EPP/XDR/EDR), antivirus, and host-based intrusion detection/prevention systems (HIDS/HIPS).
Administer and optimize data loss prevention (DLP) solutions to safeguard against unauthorized data exfiltration and fine tuning DLP policies/rulesets.
Oversee and maintain email security solutions (Secure Email Gateways, phishing protection, ICES, DMARC, SPF, DKIM) to protect against email-based threats.
Configure and manage network security controls (firewalls, IDS/IPS, NAC, VPNs, proxies, WAFs) to ensure robust perimeter security.
Implement and maintain vulnerability scanning solutions to identify and address security risks.
Deploy and manage SIEM, UEBA, and SOAR tools for comprehensive security monitoring and response.
Manage encryption technologies and key management solutions (KMS, HSM, PKI, TLS/SSL, disk encryption, database encryption) to secure sensitive data.
Security by Design
Serve as a subject matter expert for security design for projects within the organization.
Conduct Threat Modelling and Evaluate existing security posture, gaps and recommend practical enhancements.
Risk Management and Compliance
Ensure compliance with relevant local laws, regulatory requirements and industry standards or best practice.
Assist in security audits and assessments.
Continuous improvement for the process.
Collaboration and Communication
Collaborate with cross-functional teams to integrate security principles into technology processes and solutions.
Support business projects and provide security assessment and consulting service.
Requirements
Degree in Computer Science, Computer Engineering or Information Security related fields.
At least 3-5 yearsexperience in security engineering, with deep expertise in at least one or more security domains (endpoint, network, application, database, detection engineering), and hands-on experience in security projects end-to-end and ability to perform risk assessment.
Hands-on experience with at least 3 or more of the following Security areas with hand-on industry tools administration:
EPP/EDR/XDR
Vulnerability Management
Data Loss Prevention
SIEM
PAM
IAM
Email Security
Next Generation Firewall
DDOS protection/WAF
Installation and maintenance of software appliance in vCenter
Any of the below - Web Proxy, FIM, IDS/IPS, API Security, Container Scan, CI/CD Security Gates, Load Balancer Security, PAM, KSM, HSM.
Efficient in handling changing priorities and managing multiple tasks.
Adept at resolving design and functionality challenges independently with minimal guidance.
Able to work autonomously with minimal supervision.
Security certifications such CISSP, CISM, CCSP, CISA, AWS Certified Security - Specialty are highly desirable.
Experience in Security Engineering for Cloud workloads is an added advantage.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
