Cybersecurity Engineer

About the RoleThe role involves planning and implementing security measures and controls to protect the Confidentiality, Integrity, and availability of the Bank’s systems, networks, and data. The Cybersecurity Engineer is responsible for maintaining and ensuring that these security measures and controls remain relevant and up to date. The incumbent is expected to stay up to date on the latest threat intelligence, including hackers' tools, techniques, and exploits, in order to anticipate and prevent potential security breaches. The role also entails researching and evaluating emerging technologies to effectively protect the Bank’s network, prevent data loss and service interruptions.

What will you do: Develop, review, and update policies, procedures, and standards in accordance with the stipulated guideline. Plan, organize, and manage the procurement and project implementation related to IT Security solutions. Monitor and assess the performance of information security alerts and notifications to make improvements or to take corrective actions. Monitor security events, detect and analyze potential threats, and respond to security incidents using tools such as Security Information and Event Management (SIEM). Mange and configure on-premise and cloud-based security tools and technologies, including Intrusion Prevent Systems, antivirus software, Web Application Firewall (WAF), encryption tools, etc.

Stay informed on the latest threats, vulnerabilities, and technologies to ensure Bank remains protected. Conduct regular penetration testing and oversee their resolution. Perform periodic reviews of user access matrices to ensure that only authorized individuals have access to operating systems and applications. Manage user access provisioning and revocation for joiners, leavers, and movers. Serve as the primary point of contact for security incident coordination and response. The duties and responsibilities attached to posts may vary from time to time without changing the general character of the duties or the level of responsibility entailed.

In addition to the responsibilities listed above, the job holder may require performing other duties as assigned by his immediate leader or any senior manager from time to time. Skills, certifications and experience you possess: Bachelor’s Degree in Computer Science. Possess at least 4 years of experience in cybersecurity, including Application Security, Data Leak Prevention, Encryption Solutions, Incident Handling and Analysis, Intrusion Detection and Prevention, Network Security, Penetration Testing, Regulatory Compliance and Audit, Security Architecture, Web Content Filter, Web Application Firewall, Threat / Vulnerability Assessment Management, and Cloud Services (Oracle, Azure, Amazon, Google, etc). IDS / IPS interpretation of results.

System Administration (Operating System, Network, Security devices). Understanding of data analytics within the security context