Looking for a “Cyber Security Engineer” to join our growing Information Security team within a highly regulated financial services environment. This role blends SOC analyst duties, penetration testing expertise, and enterprise infrastructure security management to protect sensitive financial data, maintain compliance, and defend against emerging threats. The ideal candidate will have strong technical skills and a deep understanding of financial-sector cybersecurity requirements.
Bachelor of Science (BSc) in Computer Science & Engineering or Cyber Security or Information Security or related discipline.
CEH (Certified Ethical Hacker)(Additional certifications such as OSCP, CISSP, or CompTIA Security+ would be considered a plus)
Monitor and respond to security alerts and events using SIEM, EDR, and threat intelligence platforms.
Analyze and triage security incidents, perform log correlation, and initiate incident response processes.
Conduct threat hunting, malware analysis, and digital forensics to determine the root cause of security incidents.
Develop and maintain playbooks, runbooks, and incident response procedures tailored to financial sector threats.
Ensure alignment with financial regulatory requirements (e.g., PCI-DSS).
Perform internal/external penetration testing of applications, networks, and cloud infrastructure.
Simulate real-world attacks to improve detection and response.
Collaborate with development and infrastructure teams to prioritize and remediate vulnerabilities.
Utilize tools such as Nessus, Qualys, Burp Suite, Metasploit, and custom scripts to assess and report on risk.
Implement and manage enterprise-grade security solutions including Zero Trust components.
Ensure secure architecture and configurations for networks, endpoints, servers, and applications.
Maintain and enforce security policies, baselines, and technical standards in line with ISO 27001 and CIS benchmarks.
Firewalls & NGFWs: Palo Alto, Fortinet, Cisco ASA
SIEM: Splunk, ELK, IBM Q Radar
Endpoint Security: Crowd Strike, Symantec, Microsoft Defender
Vulnerability Scanners: Nessus, Qualys
Cloud: AWS/Azure/GCP security tools
Scripting: Python, Bash, PowerShell for automation and analysis
Read carefully before you apply:
Interested Candidates, who meet the above criteria with respect of the position, are only requested to apply uploading an updated CV containing a recent Professional Photograph.