Job Description

Job Summary:

We are seeking a highly skilled and experienced Senior Security Engineer to join our cybersecurity team. This role requires deep expertise across a wide range of security technologies and practices, including identity and access management, data protection, threat detection and response, application security, and infrastructure hardening. The ideal candidate will also have strong experience in risk assessments, risk management, and compliance with ISO 27001 standards.



Key Responsibilities:

Design, implement, and manage identity and access controls using IBM IAM and CyberArk PAM. Configure and maintain Fortra DLP to prevent data leakage across endpoints and networks. Lead Vulnerability Management efforts, including scanning, prioritization, and remediation tracking. Oversee Patch Management across servers, endpoints, and applications. Implement and maintain Database activity monitoring solutions. Design and enforce Zero Trust Architecture across the enterprise. Conduct Penetration Testing and collaborate with external testers to identify and remediate vulnerabilities. Integrate and manage SAST and DAST tools within the CI/CD pipeline. Support Security Operations Center (SOC) activities including incident detection, response, and threat hunting. Configure and manage Firewalls, EDR, SIEM, IDS/IPS, Email Security, and Web Proxy solutions. Perform Risk Assessments and develop mitigation strategies aligned with business objectives. Maintain and improve security controls in compliance with ISO 27001 standards. Develop and maintain security policies, procedures, and documentation. Stay current with emerging threats, vulnerabilities, and security technologies.

Core Cybersecurity Competencies:

Identity and Access Management (IAM) Data Loss Prevention (DLP) Privileged Access Management (PAM) Endpoint Detection and Response (EDR) Security Information and Event Management (SIEM) Vulnerability and Patch Management Penetration Testing (Internal & External) Secure Software Development (SAST/DAST) ISO 27001 Compliance & Risk Assessment Incident Response & Threat Intelligence Database and Network Security, Email Security, Web Proxy, IDS/IPS, Firewalls

Qualifications

Required Qualifications:

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field. 8-10 years of experience in cybersecurity engineering or related roles. Hands-on experience with the listed technologies and domains. Strong understanding of ISO 27001 and risk management frameworks. Excellent analytical, communication, and documentation skills. * Relevant certifications such as CISSP, CISM, CEH, OSCP, ISO 27001 Lead Implementer/Auditor, CyberArk Defender are highly desirable.