Cyber Security Engineer

Job Mode: Hybrid

Job Type : Full-time

Working Days: 5

Industry: AI Consulting

About the Company:

The company builds intelligent, scalable, and secure platforms that power real-world business automation and decision-making. We work with modern AI systems, robust backend architecture, and high-performance cloud infrastructure. If you love solving deep technical problems and building production-grade systems, youll fit right in

What Youll Do:

We are looking for a Cybersecurity Engineer who can own and strengthen security across our applications, cloud environments (GCP preferred), and data pipelines . This role involves proactive defense, incident response, vulnerability assessment, secure architecture design, and ensuring best practices across the engineering team.

Key Responsibilities

Application Security

- Perform security reviews for backend, frontend, and microservices (FastAPI/Node/Next.js ).

- Identify and remediate vulnerabilities (OWASP Top 10, SSRF, RCE, insecure

uploads).

- Implement secure coding guidelines and perform code reviews.

- Configure and maintain WAF, rate limiting, bot protection, and API gateway security.

- Guide engineering teams on building secure APIs and authorization flows.

Cloud Security (GCP preferred)

- Own security configuration of GCP projects, IAM roles, VPC, firewalls, and service accounts.

- Implement and monitor Cloud Armor, GCS security, load balancer hardening, secrets management, and KMS.

- Ensure secure deployment pipelines (CI/CD), artifact security, and container security.

- Configure posture management tools (Security Command Center, Forseti/Cloud Asset Inventory).

Data Security

- Ensure encryption at rest/in transit across databases & storage.

- Implement data access controls, data masking, tokenization, and logging policies.

- Monitor for exfiltration, unauthorized downloads, and suspicious data patterns.

- Work with DB teams to secure MongoDB, PostgreSQL/MySQL, Elasticsearch, Redis,etc.

Threat Detection & Incident Response

- Monitor logs, alerts, and anomalies from SIEM/IDS/Cloud logs.

- Lead incident investigations (malware, intrusion, crypto-mining attempts, DDoS).

- Build runbooks, response playbooks, and security automation.

- Conduct periodic penetration tests and vulnerability assessments.

What Were Looking For

- Strong understanding of web app security, API security, secure authentication & authorization.

- Hands-on with cloud security (GCP preferred; AWS acceptable).

- Familiarity with network security: VPCs, firewall rules, routing, proxies.

- Experience with SIEM tools (Chronicle, Splunk, ELK stack).

- Knowledge of container security (Docker, GKE/K8s).

- Experience conducting VA/PT, security audits, and risk assessments .

- Strong understanding of Linux security hardening.

- Knowledge of secure CI/CD pipelines, secrets management (Vault/Secret Manager).