Search Jobs
Search by job, company or skills
Search by job, company or skills
Role Summary
The Cybersecurity Engineer is responsible for safeguarding PaySupp's infrastructure, applications, and data by implementing, monitoring, and continuously improving security controls. This role owns the firewalls, WAFs, SIEM integrations, vulnerability scanning, penetration testing workflows, and incident response processes. The ideal candidate has strong hands-on technical skills, a proactive security mindset, and the ability to strengthen security across on-prem, cloud, and Kubernetes environments.
Key Responsibilities
Own and administer firewalls (Fortinet preferred) and Web Application Firewalls (WAF).
Configure firewall policies, VPNs, NAT rules, security profiles, and traffic monitoring.
Perform continuous vulnerability assessments using tools such as OpenVAS, Nessus, or Qualys.
Coordinate and perform penetration testing (internal, external, and application-level).
Remediate findings in collaboration with engineering and DevOps teams.
Implement and maintain endpoint, server, and container security controls.
Monitor threat intelligence sources and update security policies accordingly.
Maintain SIEM integrations (e.g., ELK, OpenSearch, or commercial SIEMs).
Conduct security hardening for Ubuntu servers, Kubernetes clusters.
Lead incident response procedures and root-cause analysis.
Document and enforce security policies, SOPs, and compliance-related requirements.
Support SOC 2, PCI, and regulatory audit readiness.
RequirementsMust-Have Qualifications
Strong experience with enterprise firewalls (Fortinet strongly preferred; Palo Alto, Cisco, or Sophos acceptable).
Experience deploying and managing Web Application Firewalls (Cloudflare, F5, ModSecurity, etc.).
Hands-on experience with vulnerability scanners (OpenVAS, Nessus, Qualys).
Knowledge of penetration testing methodologies and tools (Burp Suite, Nmap, Metasploit, SQLMap).
Strong knowledge of Linux security (Ubuntu hardening, SSH policies, firewall rules).
Comfortable analyzing logs and incidents using SIEM or syslog solutions.
Understanding of OWASP Top 10 and common attack vectors.
Experience implementing secure networking (VLANs, VPNs, DMZ segmentation).
Ability to produce clear security reports and remediation plans.
Strong communication and documentation skills.
Preferred Qualifications
Experience with Kubernetes and container security (Falco, Trivy, admission controllers).
Familiarity with CI/CD security (code scanning, secrets management).
Knowledge of data encryption, certificates, TLS management, and key rotation.
Experience participating in SOC 2, PCI DSS, or ISO27001 processes.
Professional certifications such as CEH, eJPT, OSCP, Security+, CySA+.
Job ID: 135978679
