Cyber Security Engineer

As a Cyber Security Engineer, you will be responsible for monitoring and analyzing security events, incidents, and alerts to detect and respond to potential cyber threats in a timely manner. You will work collaboratively with the team to identify, investigate, and resolve security incidents while maintaining and following procedures for security event alerting. This role requires a strong understanding of network and endpoint security principles, current threats, and attack trends, and the ability to work at a high technical level to identify and mitigate security risks.

Responsibilities:

Conduct regular vulnerability assessments and penetration tests to identify and prioritize security vulnerabilities.

Develop and implement strategies for the remediation of identified vulnerabilities.

Collaborate with IT teams to ensure timely patching and mitigation of vulnerabilities.

Stay informed about the latest security threats, vulnerabilities, and industry best practices.

Design, implement, and manage Security Information and Event Management (SIEM) solutions.

Configure and customize SIEM tools to align with organizational security requirements.

Monitor and analyze security events and incidents to detect and respond to potential threats.

Create and maintain correlation rules and alerts to improve incident detection capabilities.

Lead incident response efforts in the event of a security incident or breach.

Develop and document incident response plans and procedures.

Conduct post-incident reviews to identify areas for improvement.

Monitor security alerts and events generated by SIEM tools and other security systems.

Analyze log data and security events to identify patterns and trends indicative of malicious activity.

Provide expertise in the analysis of network traffic, logs, and other security-related data.

Collaborate with cross-functional teams to enhance security posture and resilience.

Communicate effectively with stakeholders, including IT teams, management, and external vendors.

Provide regular updates and reports on the status of vulnerability management and SIEM activities.

Develop and deliver security awareness programs to educate employees on cybersecurity best practices.

Provide training to IT staff and other relevant personnel on security tools and procedures.

Qualifications:

Bachelor's degree in Cybersecurity, Information Technology, or a related field.

2-3 years of hands-on experience in cybersecurity, with a focus on vulnerability management and SIEM.

Certifications such as CISSP, CISM, or GIAC are highly desirable.

In-depth knowledge of vulnerability assessment tools, penetration testing methodologies, and SIEM solutions.

Strong understanding of security incident response processes and procedures.

Familiarity with industry frameworks and standards (e.g., NIST, ISO 27001).

Excellent analytical and problem-solving skills.

Effective communication and interpersonal skills.