Job Description

As a CYBERSECURITY ENGINEER (full-time) the Employee is required to perform the following duties and undertake the following responsibilities in a professional manner.

:

• Cybersecurity oversight of the design, implementation and validation for products and solutions in cooperation with the product development architects, product managers and developers.
• Safeguards information system assets by identifying and solving potential and actual security problems.
• Protects systems by defining access privileges, control structures, and resources.
• Recognizes problems by identifying abnormalities; reporting violations.
• Implements security improvements by assessing current situation; evaluating trends; anticipating requirements such as VA and PenTest.
• Determines security violations and inefficiencies by conducting periodic audits.
• Upgrades the system by implementing and maintaining security controls.
• Keeps users informed by preparing performance reports; communicating system status.
• Provide Cybersecurity expertise to the product teams
• Lead Threat and Risk assessments for products, features and solutions
• Technical Risk Assessment and Mitigation oversight for Internal and Third Party products and solutions
• Support the engineering teams in analysing reported security incidents or vulnerabilities
• Ensure products maintain an acceptable compliance level to security policies and standards through review and consultation
• Support continuous improvement and development initiatives
• Keep abreast of security technologies, trends, capabilities, threats and appropriate mitigations

• 3-4 years of experience or greater in cybersecurity, software or architecture/system development.
• Able to learn, share knowledge and communicate effectively with peers, developers and senior management
• Knowledge of secure development practices, principles and techniques
• Technical Risk management and some experience with threat analysis is desirable. Experience in formal methods of threat assessment is desirable.
• Some knowledge of relevant security certifications for targeted markets and products desirable, but not essential
• Able to lead by influence to achieve adoption and compliance to practices and methodologies by relevant product teams.