Cybersecurity Engineer / Information Security Analyst

Overview:

We are seeking a highly skilled Cybersecurity Engineer / Information Security Analyst to protect organizational systems, networks, applications, and data from cyber threats. This role focuses on identifying vulnerabilities, monitoring security events, responding to incidents, and implementing robust security controls to ensure confidentiality, integrity, and availability of information systems.

The InfoSec professional works closely with IT, DevOps, Engineering, and Compliance teams to maintain a strong security posture across the organization.

Key Responsibilities:

• Security Monitoring & Threat Detection
• Monitor security systems, SIEM tools, and network activity for suspicious behavior
• Analyze logs, alerts, and threat intelligence feeds for potential security incidents
• Detect and respond to malware, phishing, ransomware, and intrusion attempts
• Conduct continuous security monitoring across endpoints, servers, and cloud environments

Incident Response & Risk Management

• Lead or support incident response activities during security breaches or attacks
• Investigate security incidents and perform root cause analysis
• Contain, eradicate, and recover from cyber threats
• Document incidents and recommend preventive actions
• Conduct risk assessments and vulnerability analysis

Vulnerability Management & Penetration Support

• Perform vulnerability scans and security assessments
• Identify system weaknesses in networks, applications, and infrastructure
• Collaborate with penetration testers to validate security gaps
• Track remediation efforts and verify patching and fixes
• Recommend security improvements based on findings

Security Architecture & Controls

• Implement and maintain security tools (firewalls, IDS/IPS, endpoint protection)
• Enforce access control policies and identity management systems
• Support secure configuration of cloud environments (AWS, Azure, GCP)
• Develop and maintain security policies, procedures, and standards
• Assist in encryption, key management, and data protection strategies

Compliance & Reporting

• Ensure compliance with security frameworks (ISO 27001, NIST, SOC 2, HIPAA if applicable)
• Support audits and regulatory requirements
• Generate security reports, dashboards, and risk summaries
• Document security incidents and mitigation strategies

Requirements:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field
• Strong understanding of networking, operating systems, and security principles
• Experience with security tools (SIEM, firewalls, IDS/IPS, antivirus, EDR solutions)
• Knowledge of threat detection, incident response, and vulnerability management
• Familiarity with TCP/IP, DNS, VPNs, and network protocols
• Strong analytical and problem-solving skills
• Understanding of cloud security fundamentals

Preferred (Nice-to-Have):

• Security certifications (CISSP, CEH, CompTIA Security+, CISM, OSCP)
• Experience with cloud security (AWS, Azure, GCP security tools)
• Knowledge of scripting languages (Python, Bash, PowerShell)
• Experience with penetration testing or ethical hacking
• Familiarity with DevSecOps practices and CI/CD security integration
• Experience in regulated industries (healthcare, finance, government)

Reporting To:

• Security Manager / Chief Information Security Officer (CISO) / IT Director / Head of Infrastructure

Employment Type & Work Setup:

• Full-time / Contract-based
• Onsite / Hybrid / Remote (depending on security clearance and company policy)
• 24/7 on-call support may be required for incident response roles
• Technology-driven environments (enterprise IT, SaaS, fintech, healthcare, cloud platforms)

Work Environment & Conditions:

• IT infrastructure, security operations center (SOC), or cloud environments
• Fast-paced, high-alert environment focused on threat prevention and response
• Collaboration with IT, DevOps, Engineering, and Compliance teams
• High responsibility for organizational data and system security
• Continuous learning due to evolving cyber threat landscape