Cyber Security Engineer

GENERAL FUNCTION

We are looking for a seasoned Cyber Security Engineer with a minimum of 7 years of hands-on experience in information security, ideally in regulated environments such as finance. This role will lead the design, implementation, and continuous improvement of security capabilities across our infrastructure, with emphasis on cloud security, especially within AWS.

You’ll work closely with IT, Cyber OPS, DevOps, risk, and compliance teams to ensure our security posture is resilient, scalable, and aligned with business goals.

DUTIES/RESPONSIBILITIES

Security Architecture & Engineering

• Design and implement secure architectures for networks, applications, and data storage.
• Deploy and manage controls such as firewalls, EDR, IDS/IPS, and DLP across hybrid environments.
• Define and enforce secure configurations and system hardening baselines.

Cloud Security (AWS Focus)

• Serve as the technical lead for AWS security strategy, implementation, and operations.
• Build and maintain cloud security controls using AWS-native services (e.g., GuardDuty, Macie, Security Hub, IAM, KMS, CloudTrail, Config).
• Develop automation for policy enforcement, misconfiguration detection, and incident response within AWS.
• Review and enhance security of VPCs, S3 buckets, Lambda functions, EC2 instances, and containerized workloads (ECS, EKS).
• Collaborate with DevOps to integrate security into infrastructure-as-code (Terraform, CloudFormation).

Threat & Vulnerability Management

• Conduct security assessments, vulnerability scans, and threat modeling.
• Coordinate remediation efforts across IT and development teams.

Monitoring & Incident Response

• Tune SIEM rules for AWS and on-prem logs, manage alert triage and escalation.
• Lead incident response activities and support forensic investigations as needed.

Governance, Risk & Compliance

• Ensure AWS and internal systems comply with regulatory standards.
• Support third-party risk reviews and internal/external audits.

DevSecOps & Automation

• Embed security controls into CI/CD workflows.
• Use scripting to automate operational tasks and detection/response playbooks.

Training & Collaboration

• Provide technical expertise to cross-functional teams.
• Advocate for secure coding, architecture, and operational practices across the company.

EDUCATION

• Bachelor’s degree in Computer Science, Information Security, or related field (Master’s preferred).

EXPERIENCE

• Minimum 7 years of experience in cybersecurity roles with progressive responsibilities.
• Strong understanding of:
• Security operations, network security, identity and access management, and endpoint protection.
• Cloud security best practices, especially in AWS environments.
• Hands-on experience with:
• AWS-native security services (CloudTrail, IAM, KMS, GuardDuty, Security Hub, etc.).
• Security automation and scripting (Python, Bash, PowerShell).
• SIEM, IDS/IPS, endpoint protection, DLP, and vulnerability management tools.
• Familiarity with frameworks and standards: NIST CSF, MITRE ATT&CK, CIS Benchmarks.
• Relevant certifications are a plus: AWS Certified Security - Specialty, CISSP, CISM, OSCP, GSEC, etc.

Nice to Have

• Experience in cloud-first or cloud-migration environments.
• Knowledge of Kubernetes and container security in AWS (EKS, Fargate).
• Participation in red/blue/purple teaming or threat hunting programs.
• Prior experience supporting security in regulated industries.