Associate Engineer - Cyber Security

The Associate Engineer – Cyber Security is responsible for ensuring the protection, integrity, and confidentiality of the organization's information systems and data. They analyze security threats, monitor network activity, and implement measures to detect and prevent cyber-attacks. The Associate Engineer will conduct risk assessments, develop security policies, and provide guidance to ensure compliance with industry standards and regulations.

Responsibilities:

• Work on a roster basis shift. (Day [ 8:00 a.m. - 5:00 p.m.] / Evening [ 4:00 p.m. - 1:00 a.m.] / Night [12:00 a.m. - 9:00 a.m.])
• Monitor and analyze network traffic, system logs, and security alerts to identify potential security incidents or vulnerabilities.
• Conduct regular security assessments and penetration testing to identify weaknesses in the organization's infrastructure, applications, and systems.
• Enforce and maintain security controls, policies, and procedures to mitigate risks and ensure compliance with regulatory requirements.
• Respond to and investigate security incidents, conducting root cause analysis and implementing corrective actions.
• Collaborate with cross-functional teams to design and implement secure solutions, including network architecture, system configurations, and access controls.
• Stay up to date with the latest security threats, vulnerabilities, and industry trends to proactively identify and address potential risks.
• Conduct security awareness training for employees, promoting best practices and ensuring a culture of security throughout the organization.
• Monitor and maintain security systems, including firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) tools.
• Participate in incident response planning and execute response procedures when necessary.
• Collaborate with external stakeholders, such as auditors and vendors, to facilitate security audits and assessments.

Qualifications & Experience:

• Bachelor's degree in Computer Science, Information Security, or a related field.

• Relevant certifications (e.g., CISSP, CISM, CompTIA Security+) are highly desirable.

• 6 months to 1 year Industry experience in relevant field.

• Exposure to cybersecurity, including threat monitoring, incident response, vulnerability management, and risk assessment.

• Good understanding of network protocols, operating systems, and security technologies.

• Familiarity with industry standards and regulations (e.g., ISO 27001, NIST, GDPR) and their implementation.

• Proficient in using security tools and technologies, such as SIEM, intrusion detection/prevention systems, vulnerability scanners, and penetration testing tools.

• Strong analytical and problem-solving skills, with the ability to assess complex situations and make informed decisions.

• Excellent communication and interpersonal skills to effectively collaborate with technical and non-technical stakeholders.

• Continuous learning mindset to keep up with emerging threats and technologies in the cybersecurity field.