Job Description:

The Cybersecurity Engineer will be responsible for designing and implementing secure, resilient system architectures while ensuring security is embedded throughout the development lifecycle. This role requires a deep understanding of cybersecurity frameworks, threat modeling, and risk mitigation strategies to protect enterprise systems against evolving threats.

Core Responsibilities:

1. Secure System Architecture & Design

• Design and implement robust security architectures for enterprise systems, applications, and cloud environments.
• Develop security blueprints, reference architectures, and design patterns to standardize secure development practices.
• Ensure security-by-design principles are integrated into all phases of the SDLC (Software Development Lifecycle).

2. Risk Mitigation & Threat Modeling

• Conduct threat modeling (e.g., STRIDE, DREAD) to identify vulnerabilities in system designs.
• Define security controls to mitigate risks from emerging technologies (e.g., cloud, IoT, AI).
• Perform security impact assessments for new business initiatives and technology deployments.

3. Security Integration & Compliance

• Align security architectures with industry standards (NIST CSF, ISO 27001, CIS, OWASP).
• Ensure compliance with regulatory requirements (GDPR, HIPAA, PCI-DSS, SOC 2).
• Collaborate with DevSecOps teams to integrate security into CI/CD pipelines.

4. Security Documentation & Governance

• Produce detailed security design documents, including:
  Security architecture diagrams
  Data flow models with security controls
  Encryption and access control policies
• Maintain security baselines for systems and applications.
• Support audits, penetration tests, and vulnerability assessments.

Required Qualifications & Skills:

Education & Experience:

• Bachelor's/Master's in Cybersecurity, Computer Science, or related field.
• 3-5+ years in cybersecurity, with a focus on secure architecture design, risk assessment, or cloud security.
• Hands-on experience with:
  Cloud security (AWS/Azure/GCP) and hybrid environments.
  Identity & Access Management (IAM), PKI, and encryption.
  SIEM, EDR/XDR, firewalls, and network security.

Technical Competencies:

• Security Frameworks: NIST, ISO 27001, CIS, MITRE ATT&CK.
• Threat Modeling Tools: Microsoft Threat Modeling Tool, OWASP Threat Dragon.
• Security Automation: Experience with IaC (Terraform, Ansible) and DevSecOps tools (GitLab, Jenkins).

Certifications (Preferred):

• CISSP, CCSP, CISA, CISM, AWS/Azure Security, SABSA, TOGAF.

Soft Skills:

• Strong analytical and problem-solving abilities.
• Ability to translate technical risks into business impacts.
• Excellent communication and stakeholder management skills.