-
Design, implement, and maintain enterprise security architecture, policies, and standards.
-
Conduct vulnerability assessments, penetration testing, and security audits across network and application environments.
-
Monitor security systems for suspicious activity, threats, and security breaches.
-
Lead incident response efforts, including investigation, remediation, documentation, and reporting.
-
Manage security tools such as SIEM, IDS/IPS, firewalls, endpoint protection, and identity access management systems.
-
Strengthen cloud security across AWS, Azure, or GCP environments.
-
Ensure regulatory compliance such as SOC2, ISO 27001, NIST, HIPAA, or PCI standards.
-
Evaluate and integrate new security technologies and automation solutions.
-
Collaborate with IT, DevOps, legal, and product teams to promote security best practices.
-
Develop security documentation, training, and risk mitigation strategies.
-
12+ years of professional experience as a Security Engineer or in a related cybersecurity role.
-
Strong hands-on expertise with SIEM tools such as Splunk, QRadar, or Sentinel.
-
Deep knowledge of networking, firewalls, VPNs, threat intelligence, and incident response.
-
Experience with authentication and identity controls: MFA, SSO, SAML, OAuth, Active Directory.
-
Proven experience in secure cloud architecture and services.
-
Strong understanding of encryption, key management, and security protocols.
-
Ability to conduct forensics, threat hunting, and real-time monitoring.
-
Familiarity with scripting or automation tools such as Python, PowerShell, or Bash.
-
Excellent communication and problem-solving abilities.
-
Relevant certifications preferred: CISSP, CISM, CEH, OSCP, CCSP, or GIAC.