Engineer / Senior Engineer - Cybersecurity Operations

Job ProfileExecute and support VA/PT, Red Teaming, and Threat Hunting activities.Define and maintain hardening standards and security baselines across the Bank’s technology landscape.Assess security risks in new systems and business initiatives and support the secure adoption of emerging technologies (AI, ML, cloud-based solutions etc).Perform technical assurance reviews across the Bank’s security stack (Eg: firewalls, EDR, IAM, etc) and cloud environments.Support the Incident Management and Response Framework, review SOC events and incidents, assist in containment and recovery, post-incident analysis.Contribute to ongoing compliance with ISO 27001, PCI DSS, SWIFT CSP, and other regulatory requirements by validating technical controls.Applicant's ProfileBachelors or Master’s Degree in Information Security or Computer Science/ Computer Engineering/ Information Technology specializing in Information Security (recognized by the UGC of Sri Lanka).One or more professional certifications such as CISSP, CISM, CRISC, CEH, or CHFI.A minimum of 3 years hands-on experience in information or system security engineering, technical security assessments or cyber operations.Exposure on system and network security administration on various networking products, security products, databases and operating systems.Strong understanding of information security frameworks, risk management standards, and regulatory requirements (e.g., ISO 2700x, PCI DSS, NIST).Excellent analytical, technical report writing and interpersonal skills with the ability to perform effectively under demanding timelines.