Qualifications
- Bachelor's or master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience).
Requirements
- Minimum 8+ years of experience in Cybersecurity Engineer or a similar role with a good hands-on experience on the list of tech stack as listed in the responsibilities section, we are looking for someone who is well-versed with security [ SIEM, PAM, DAM, Threat modeling, App & Infra. Security Practices & Architecture etc.].
- Additionally, if you are certified on any of the technologies, we would love to see you prove it with your detail-oriented problem-solving skillset and knowledge of the products
Responsibilities & Authorities
- Design, implement, and manage SIEM, PAM, and DAM solutions to secure access to critical systems and sensitive data.
- Extensive experience with Wazuh SIEM implementation, configuration, and maintenance, including distributed cluster deployment with High Availability (HA).
- Expertise in the Wazuh Stack (Wazuh Manager, Indexer, Dashboards) for real-time threat detection and monitoring.
- Strong knowledge of SOC (Security Operations Center) workflows, processes, and methodologies for efficient incident detection and response.
- Administer and optimize Privileged Access Management (PAM) solutions to secure and monitor privileged accounts.
- Implement and manage advanced security solutions such as XDR, DLP, malware detection, and other endpoint and network protection technologies.
- Administer, monitor, and optimize Database Activity Monitoring (DAM) systems, including logging, alerting, and analyzing potential threats.
- Assist in the development and implementation of incident response plans and participate in security incident investigations and forensics.
- Perform comprehensive risk assessments to identify vulnerabilities and mitigate security risks in information systems and workflows.
- Provide technical guidance on security architecture and design, ensuring robust protection mechanisms for enterprise assets.
Additional Skills & Knowledge
Knowledge of DevSecOps practices, Patch Management, API Security, Penetration Testing, Threat Modeling, and Security Auditing.
Experience in identifying and remediating vulnerabilities in dependencies, Docker files, container images, and Kubernetes resources.
Familiarity with the OWASP Testing Guide v3/v4 and OWASP Top 10 security risks.
Strong verbal and written communication skills, with the ability to collaborate effectively with multiple teams and stakeholders.
Experience with project management and collaboration tools such as Jira and Confluence (or similar tools).
Solid understanding of security frameworks like NIST and CIS.
Familiarity with compliance requirements and controls for standards such as SOC2, ISO, PCI-DSS, GDPR, and others.
If you meet the qualifications and are interested in this position, apply for it or please share your resume with us at careers@avrioc.com with the subject line: "Your Name | Years of Experience | Notice Period, Location" along with details like your current salary, expected salary, etc.
Please note that only shortlisted candidates will be contacted.
Elevate your career and embark on a transformative journey with us.