Job Overview-
We are looking to hire a cyber security engineer with an analytical mind and a detailed understanding of cybersecurity methodologies. Cyber security engineers are expected to have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure, and deliver on tight deadlines. To ensure success, a cyber security engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. Top candidates will be comfortable working with a variety of technologies, security problems, and troubleshooting of the network.
Responsibilities:-
Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
- Troubleshooting security and network problems.
- Responding to all system and/or network security breaches.
- Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.
- Participating in the change management process.
- Testing and identifying network and system vulnerabilities.
- Daily administrative tasks, reporting, and communication with the relevant departments in the organization.
- Conduct hands on security testing, analyse test results, document risks, and recommend counter measures.
- Researching, evaluating, and developing relevant Security Testing tools and methods.
- A degree in computer science, IT, systems engineering, or related qualification.
- Experience with incident detection, incident response, and forensics.
- Core experience and profound knowledge in application and infrastructure security testing.
- Strong understanding and hands on experience on application and infrastructure vulnerabilities, automated/manual testing, auditing and remediation techniques.
- Strong understanding of OWASP, WASC 2.0 Threats classification.
- Strong understanding of cryptography.
- Experience with standard security tools such as Metasploit, SQLMap, Nmap, OWASP ZAP, Burp Suite etc.
- Experience with network/infrastructure vulnerability assessment tools such as Nessus, Qualys etc.
- Experience with establishing penetration testing procedures and processes.
- Experience with Firewalls (functionality and maintenance), Office 365 and Endpoint Security.
- Proficiency in any one of the scripting languages like Python, C++, Java, Ruby, Node, Go, and/or Power Shell.
- Ability to work under pressure in a fast-paced environment.
- Strong attention to detail with an analytical mind and outstanding problem-solving skills.
- Great awareness of cybersecurity trends and hacking techniques.
- Good to have-
Understanding of server and client-side application development.
- Experience with performing code review, wireless and firewall assessments.
- Technical knowledge in network security products, cryptographic suites and network/application firewalls.
- Experience in evasion techniques to bypass firewalls and intrusion detection systems. Experience with Mobile Application Penetration testing, APIs etc.
- Knowledge in Application Architecture Review, Threat Modelling concepts
- Security Certifications: OSCP, OSEE, OSCE etc.