Job Description

Job Summary

The Cybersecurity Engineer will play a key role in designing, implementing, and maintaining secure IT and OT environments across the organization. This role involves hands-on technical work in security architecture, vulnerability management, incident response, and compliance alignment. The engineer will collaborate with cross-functional teams to embed security best practices into infrastructure, applications, and cloud environments, ensuring compliance with ISO 27001, UAEIA, and NIST standards.

Key Responsibilities1. Security Architecture & Engineering

Design and implement secure architectures across IT and OT systems following defense-in-depth and secure-by-design principles. Develop and maintain security controls for infrastructure, endpoints, cloud, and applications. Validate the security of network, system, and cloud configurations against architecture standards and compliance requirements.

2. Vulnerability & Risk Management

Conduct regular vulnerability assessments and threat modeling for enterprise assets. Analyze and prioritize risks, coordinating remediation with infrastructure and application teams. Ensure risk mitigation aligns with ISO 27001, UAEIA, and NIST frameworks.

3. Security Operations & Monitoring

Review alerts, logs, and indicators of compromise to support continuous monitoring and incident detection. Recommend and implement automation or tuning improvements to enhance detection accuracy and reduce false positives.

4. Cloud & Application Security

Engineer secure architectures and configurations for multi-cloud environments (AWS, Azure, GCP). Integrate security controls within CI/CD pipelines and DevSecOps workflows. Participate in secure code reviews and support application security testing (SAST, DAST).

5. Incident Response & Forensics

Lead technical response during cyber incidents, conducting root cause analysis and digital forensics. Update and maintain incident response playbooks; lead post-incident reviews. Ensure evidence handling and documentation comply with legal and regulatory standards.

6. Compliance & Policy Alignment

Ensure cybersecurity policies, standards, and procedures meet UAEIA, ISO 27001/27002, and internal audit requirements. Support audit readiness by maintaining accurate documentation, technical standards, and access control records. Provide technical input during internal reviews and regulatory assessments.

7. Stakeholder Collaboration

Collaborate with SOC, IT infrastructure, application, risk, and audit teams to embed security into projects and operations. Review network and system architectures from a security standpoint, providing risk-based recommendations. Participate in change management processes to evaluate security impacts.

Technical Expertise

Strong knowledge of network security technologies (firewalls, WAFs, IDS/IPS) and configuration best practices. Experience with SIEM (e.g., Splunk, QRadar), SOAR, EDR/XDR, vulnerability management (Tenable, Qualys), and PAM (CyberArk, BeyondTrust). Skilled in securing hybrid and cloud-native environments. Familiar with secure development, DevSecOps, and container security (Docker, Kubernetes). Proficient in scripting languages such as Python, PowerShell, or Bash for automation and analysis.

Required Skills and Qualifications

5-8 years of experience in cybersecurity engineering, security architecture, or technical risk management. Strong understanding of network, endpoint, cloud, and application security principles. Experience in vulnerability management, threat modeling, and incident response. Working knowledge of ISO 27001, UAEIA, NIST CSF, and MITRE ATT&CK frameworks. Excellent communication skills with the ability to explain complex security concepts to non-technical stakeholders. Relevant certifications such as

CISSP, OSCP, CEH, GCIA, CCSP

, or equivalent preferred.

Key DeliverablesSecurity Architecture & Engineering

Secure architecture diagrams, design documentation, and technical standards. Assessment reports on system and infrastructure configurations with mitigation recommendations.

Vulnerability & Risk Management

Regular vulnerability analysis reports, remediation tracking, and risk assessments. Threat models aligned with business and regulatory priorities.

Security Operations & Monitoring

SIEM/SOAR detection use cases and correlation rules. Dashboards and metrics demonstrating incident detection and response improvements.

Cloud & Application Security

CI/CD security validation checklists and application testing reports. Cloud security posture assessments and hardening reports.

Incident Response & Forensics

Investigation logs, post-incident reports, and updated IR playbooks. Documented forensic analysis and evidence handling reports.

Documentation & Compliance

Technical SOPs and configuration baselines aligned with ISO 27001 and UAEIA. Audit-ready documentation for network changes, access control, and policy exceptions.

Cybersecurity & Network Knowledge Sharing

Quarterly security landscape reports highlighting trends, risks, and recommendations. Knowledge-sharing sessions and training materials for internal teams.

Reporting & Governance

The Cybersecurity Engineer will report to the Head of Cybersecurity (or equivalent) and will contribute to the organization's overall security posture, ensuring compliance, operational resilience, and continuous improvement.

Job Types: Full-time, Contract