JOB PURPOSE

Support the implementation and continuous enhancement of cyber security controls across applications, cloud infrastructure, DevOps pipelines, and operational environments by monitoring security risks, enforcing secure development and infrastructure practices, responding to security incidents, and collaborating with cross-functional teams to strengthen the organization’s overall cyber resilience and secure technology operations.

KEY RESPONSIBILITIES

• Design, implement, and maintain automated security checks (SAST, DAST, SCA) within the CI/CD pipeline to ensure vulnerabilities are detected and remediated early in the software development lifecycle, following the "shift-left" security approach

• Partner closely with software developers to enforce secure coding standards based on frameworks such as OWASP Top 10, conduct security-focused code reviews, and provide real-time guidance on mitigating common application vulnerabilities.

• Monitor and analyze security alerts across cloud environments (AWS, Azure, Oracle) using tools such as Microsoft Defender for Cloud, AWS Guard Duty and triage cloud security posture management (CSPM) findings by severity and exposure risk.

• Work with the infrastructure and cloud platform engineering teams to scan and validate IaC templates (Terraform) for misconfigurations and policy violations before deployment, embedding security-as-code principles into infrastructure provisioning.

• Enforce security controls for containerized workloads, including container image scanning, runtime protection, Kubernetes admission policies, and pod security standards, in collaboration with the cloud platform engineering team.

• Implement and govern secrets management solutions (e.g., Azure Key Vault, AWS Secrets Manager) to prevent hardcoded credentials in repositories and ensure secure injection of secrets at runtime across development and operations environments

• Monitor security systems (SIEM, XDR, IDS/IPS) to detect, triage, and respond to security incidents in a timely manner; perform in-depth log analysis, forensic investigation, and root cause analysis across both on-premises and cloud environments

• Conduct threat modeling sessions with development and infrastructure teams for new applications, services, and architectural changes to proactively identify and mitigate security risks before they enter production.

• Act as the security liaison across development, cloud platform engineering, and infrastructure teams; deliver security awareness training, conduct workshops on secure DevOps practices, and foster a culture of shared security responsibility.

• Assess and secure APIs and microservices architectures by implementing API gateway security controls, authentication/authorization best practices (OAuth, JWT), rate limiting, and automated API security testing within the DevSecOps pipeline.

EDUCATION / QUALIFICATIONS

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or an equivalent major in the related field.

EXPERIENCE

• 0-2 years of experience in the related field.

JOB SPECIFIC SKILLS & ATTRIBUTES

• Threat Detection and Response using any of these tools (Microsoft Defender XDR, Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft Defender for Endpoint).

• Vulnerability Management using any of these tools (Nessus, Qualys, OpenVAS).

• Privilege Access Management (PAM) using any of these tools (Wallix, CyberArk, Beyond Trust).

• Security Automation and Orchestration using any of these tools (Python, Splunk Phantom, Cortex XSOAR, Azure Sentinel).

• DevSecOps use any of these tools (SonarQube, GitHub Actions, AWS Code Pipeline).

• Security Hardening and Compliance using any of these tools (CIS Benchmarks, SITG Benchmarks, Qualys Policy Compliance).

• Cloud Security using any of these tools (AWS Security Hub, Azure Security Center, Microsoft Defender for Cloud)

• Network Security using any of these tools (Palo Alto Networks, Fortinet, Cisco ASA, Snort, Suricata)

• Endpoint Security using any of these tools (Microsoft Defender for Endpoint, CrowdStrike Falcon, Sentinel One).