The Cyber Security Engineer III is a senior-level position responsible for designing, implementing, and maintaining robust security solutions to protect our customers' systems, networks, and data. This role will lead and execute complex security projects, provide technical guidance to junior team members, and collaborate with cross-functional teams to ensure the organization's security posture aligns with industry best practices. The Cyber Security Engineer III will leverage expertise in security technologies--such as
Splunk, Tenable, Nessus, CrowdStrike, Wiz
, and
Axonius
--to proactively identify and mitigate potential security risks and incidents. This role also involves direct server-side mitigation of vulnerabilities, secure cloud configuration, and hands-on vulnerability lifecycle management using tools like
Tenable
and
Wiz
.
Essential Functions
Leads the design, implementation, and maintenance of enterprise-wide security solutions, including but not limited to firewalls, intrusion detection/prevention systems, SIEM, endpoint protection, and secure network architectures.
Performs advanced threat modelling and vulnerability assessments to identify security gaps and recommends appropriate controls and countermeasures.
Leads and executes vulnerability management initiatives, including scanning, triaging, prioritizing, and remediating vulnerabilities on server and cloud environments using platforms like
Tenable
,
Nessus
, and
Wiz
.
Monitors and analyses security events and alerts from
Splunk, Tenable, CrowdStrike, Nessus
,
Wiz
, and
Axonius
to detect and respond to potential threats.
Develops and implements security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
Conducts in-depth security incident investigations, including root cause analysis, post-mortem reviews, and mitigation strategies.
Performs penetration tests or coordinates red-team activities to simulate real-world attacks and identify exploitable vulnerabilities, using tools like
Burp Suite, Nmap, Metasploit, OWASP ZAP
, and others.
Develops and maintains secure configuration standards for
cloud environments (AWS, Azure, GCP)
; implements and enforces controls to protect cloud assets from misconfigurations.
Collaborates with cross-functional teams to evaluate, select, and deploy new security technologies, tools, and services.
Partners with DevOps and infrastructure teams to integrate security into CI/CD pipelines and cloud deployments.
Develops and delivers security awareness and training programs to educate employees on security best practices and policies.
Participates in security audits and compliance assessments, ensuring adherence to relevant frameworks and regulations.
Stays abreast of the latest security trends, vulnerabilities, and industry developments and makes recommendations for enhancing the organization's security posture.
Additional Specific Duties and Responsibilities
Performs On-call rotation with team members.
Mentors and coaches junior security team members, fostering their professional growth and development.
Collaborates with the Security Operations Centre (SOC) to enhance incident response capabilities and processes.
Leads security-related projects, including planning, resource allocation, and timely execution.
Collaborates with vendors and external partners to assess and improve the security posture of third-party systems and services.
Prepares and presents comprehensive security reports and vulnerability metrics to senior management and stakeholders.
Participates in incident response and recovery efforts, ensuring timely communication and documentation.
Supports the creation of remediation playbooks, vulnerability lifecycle processes, and secure cloud architecture baselines.
Collaborates with development, infrastructure, and cloud teams to implement remediation plans following vulnerability scans and penetration tests.
Required Qualifications
Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience).
Minimum of 5 years of experience in information security, with a focus on designing and implementing security solutions.
Strong hands-on expertise in security tools including
Splunk, Tenable, Nessus, CrowdStrike, Wiz
, and
Axonius
.
Proven experience with
vulnerability assessment and management
, including prioritization, mitigation planning, and cross-team collaboration.
Deep understanding of cloud security principles, secure configuration practices, and tools for
AWS, Azure, and GCP
.
Solid understanding of network security principles, protocols, and technologies.
Experience conducting penetration testing and familiarity with common tools and methodologies.
In-depth knowledge of industry frameworks and regulations, such as NIST, ISO 27001, and GDPR.
Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions.
Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
Desired/Preferred Qualifications
Relevant certifications such as
CompTIA Security+
,
CISSP
,
CEH
,
Certified Splunk Architect/Administrator
, or equivalent.
Experience with cloud security technologies, CSPM tools, and cloud compliance frameworks.
Familiarity with secure coding practices and application security testing methodologies.
Experience in managing security incidents and conducting forensic investigations.
Strong project management skills, with the ability to prioritize and execute multiple tasks concurrently.
Note: This is C2H position with company after 6months employment will be transferred to client payroll.