Cyber Security Engineer

Job Description:

*This position will be responsible for performing in-depth risk assessments, threat analysis,

and vulnerability evaluations of software and system deployments developed by R&D

engineers.

* This position will proactively identify security threats in software, networking, and

operational environments.

* Conduct ethical hacking and penetration testing to assess system resilience against security

breaches.

* Coordinate and communicate regularly with R&D, DevOps, and Security teams to provide

updates on threat findings, risk metrics, mitigation plans, and security documentation.

* Lead security review cycles for code, architectural designs, and deployment configurations

to ensure compliance with security standards, best practices, and regulatory requirements.

* Collaborate with development teams to translate security findings into actionable

remediation tasks.

* Ensure continuous monitoring and threat intelligence integration to detect emerging

vulnerabilities and attack vectors.

* Provide detailed reporting and briefing materials for stakeholders on security risks, severity

levels, and mitigation status.

* Support incident response efforts and assist in post-incident root cause analyses.

* Champion security awareness and best practices across engineering teams.

Requirements:

* Bachelor's degree in Computer Science, Cybersecurity, Information Security, Software

Engineering, or a related discipline.

* 3 to 7 years of experience in cybersecurity, threat analysis, risk assessment, or ethical

hacking activities.

* Demonstrated experience with penetration testing tools and methodologies (e.g., OWASP,

Metasploit, Nessus, Burp Suite).

* Strong knowledge of application, network, and system security concepts, including secure

SDLC, cryptography, authentication, and access control.

* Practical experience reviewing code and infrastructure for vulnerabilities.

* Familiarity with cloud security, APIs, web/mobile application threats, and common attack

vectors.

* Industry-recognized security certifications such as OSCP, CEH, CISSP, or equivalent are

preferred.

* Excellent analytical, problem-solving, and reporting skills.

* Ability to communicate complex security findings effectively to technical and non-technical

stakeholders.

* Strong initiative, adaptability, and attention to detail in a fast-paced development

environment.