Cyber Security Engineer

Cyber Security Engineer – Job Description

Position Summary

The Cyber Security Engineer is responsible for designing, implementing, and maintaining security systems to protect the organization's computer networks, applications, and data. This role involves identifying vulnerabilities, responding to incidents, and ensuring compliance with security best practices and regulatory standards.

Key Responsibilities

1. Security Architecture & Implementation

• Design, deploy, and manage cybersecurity technologies such as firewalls, IDS/IPS, endpoint protection, and SIEM tools.
• Implement security controls for cloud, network, application, and endpoint environments.
• Develop and maintain secure system configurations and hardening guidelines.

2. Threat Detection & Incident Response

• Monitor security alerts and logs to detect suspicious activities.
• Investigate security incidents and lead response efforts.
• Perform root cause analysis and implement preventive measures.

3. Vulnerability Management

• Conduct regular vulnerability scans and penetration tests.
• Identify risks and work with IT/engineering teams to remediate vulnerabilities.
• Maintain and update the organization's risk register.

4. Policy, Compliance & Governance

• Develop and maintain security policies, procedures, and standards.
• Ensure compliance with regulatory frameworks (NIST, ISO 27001, HIPAA, PCI-DSS).
• Conduct security awareness training for employees.

5. Identity & Access Management

• Manage IAM tools and enforce least-privilege access controls.
• Oversee MFA, SSO, and privileged access management solutions.

6. Collaboration & Documentation

• Work closely with IT, DevOps, and engineering teams to maintain secure environments.
• Prepare detailed security reports, incident summaries, and audit documentation.
• Participate in disaster recovery and business continuity planning.

Required Skills & Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, IT, or related field.
• Strong knowledge of network security, firewalls, and security protocols.
• Hands-on experience with SIEM tools (Splunk, QRadar, Azure Sentinel).
• Experience with cloud security (AWS, Azure, or GCP).
• Strong understanding of threat modeling, vulnerability scanning, and incident response.
• Familiarity with scripting languages (Python, Bash, PowerShell).