Cyber Security Engineer

Cyber Security Engineer Roles & Responsibilities (JD)

Role Summary

The Cyber Security Engineer is responsible for designing, implementing, and operating security controls across network, cloud, identity, endpoint, and application domains. The role partners with IT infrastructure, application, and operations teams to deliver secure-by-design solutions, improve detection and response capabilities, and ensure security controls are implemented in line with regulatory, audit, and internal security standards.

Key Responsibilities

Design, implement, and maintain security controls for network, cloud, endpoints, identity, and application environments (e.g., NGFW, WAF/WAAP, VPN, NAC, DLP, EDR, IAM/MFA/PAM).

Support security architecture and secure-by-design reviews for new initiatives, applications, and infrastructure changes; identify risks and recommend compensating controls.

Drive evaluation/PoC activities for security products and features; document outcomes, design options, and implementation plans.

Own end-to-end execution of assigned security projects: planning, implementation coordination, change management, validation, and transition to operations.

Operate and fine-tune security tooling: policy management, rule optimization, hygiene checks, and periodic control reviews to improve effectiveness and reduce noise.

Provide L2/L3 troubleshooting and support for security incidents and operational issues; perform root cause analysis and implement preventive fixes.

Develop and maintain audit-ready documentation such as secure configuration documents, SOPs, HLD/LLD, network/security diagrams, and runbooks.

Collaborate with internal stakeholders and vendors/OEMs to deliver improvements within timelines and agreed scope; manage escalations where required.

Support compliance and audit activities: evidence collection, control validation, closure of observations, and periodic reporting.

Continuously identify opportunities to enhance security posture through automation, process improvements, and emerging capabilities (e.g., analytics, AI/ML-driven detection).

Required Skills & Qualifications

48 years of experience in implementing and operating enterprise security controls and solutions. Strong fundamentals in networking (routing, switching, TCP/IP, DNS, load balancing) and security concepts (segmentation, zero trust, encryption, threat modeling).

Hands-on experience with security technologies such as NGFW, WAF/WAAP, VPN, NAC, DLP, EDR, IDS/IPS, IAM/MFA/PAM, MDM, and vulnerability management.

Working knowledge of at least one cloud platform (Azure/AWS/GCP) and native security services (network security, identity, logging/monitoring, key management).

Ability to translate security requirements into implementable configurations, standards, and operational procedures.

Awareness of relevant frameworks and best practices (ISO 27001, PCI-DSS, CIS benchmarks, OWASP, SANS) and experience supporting audit evidence.

Strong analytical, troubleshooting, documentation, and communication skills; ability to work with cross-functional teams.

Good-to-have: scripting/automation (PowerShell/Python), SIEM/SOAR exposure, and experience with monitoring and log analytics.

Cyber Security Certification would be preferred.