Key Responsibilities Design, implement, and maintain security solutions to safeguard the organizations networks, systems, and data. Perform vulnerability assessments, penetration testing, and risk analysis to identify and remediate potential threats. Monitor security systems and alerts to proactively detect and respond to security incidents and breaches. Collaborate with development and infrastructure teams to ensure secure software development practices and infrastructure configurations. Develop and enforce security policies, standards, and procedures to maintain a robust security posture. Participate in security incident response, including the identification, investigation, and resolution of security events. Maintain up-to-date knowledge of security threats, vulnerabilities, and technology trends, and recommend new tools or methods to improve the organizations security posture. Ensure compliance with industry regulations, such as GDPR, HIPAA, PCI-DSS, and other relevant security frameworks. Conduct regular security audits and assessments, both internal and external, and track remediation efforts. Provide security training and awareness programs to internal teams and staff. Work closely with cross-functional teams to integrate security into all aspects of the software development lifecycle (SDLC). Skills & Qualifications Bachelors degree in Computer Science, Information Security, or a related field. A Masters degree is a plus. Minimum of 3-5 years of experience in a Security Engineering or similar role. Strong understanding of security protocols, cryptography, authentication, and authorization techniques. Hands-on experience with vulnerability scanning tools (e.g., Nessus, Qualys), penetration testing tools (e.g., Kali Linux, Burp Suite), and security information and event management (SIEM) tools (e.g., Splunk, Elastic Stack). Experience with firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint security, and other network security tools. Familiarity with cloud security best practices (AWS, Azure, Google Cloud) and tools (e.g., AWS GuardDuty, Azure Security Center). Knowledge of security standards and frameworks (e.g., NIST, ISO 27001, CIS Benchmarks, SOC 2). Experience with automated security testing and CI/CD pipelines to integrate security into DevOps processes. Solid knowledge of web application security (OWASP Top 10, secure coding practices, etc.). Familiarity with incident response procedures, including logging, analysis, and forensic tools. Experience with scripting languages (Python, Bash, PowerShell, etc.) for automating security tasks and investigations. Ability to assess and communicate security risks and technical findings to non-technical stakeholders. Preferred Qualifications Certifications such as CISSP, CISM, CEH, or OSCP are highly desirable. Experience with containerization technologies (Docker, Kubernetes) and securing containerized environments. Familiarity with zero-trust architecture and its implementation. Experience in threat hunting and intelligence. Understanding of privacy laws and regulations (GDPR, CCPA, etc.). Experience working in a regulated industry (finance, healthcare, etc.) is a plus. We are looking forward to your application