Cyber Security Engineer

About UnifiedEmbark on a transformative journey with Unified Infotech, a beacon of innovation and excellence in the tech consulting and software development landscape for over 14 years. We are dedicated to designing custom, forward-thinking web, mobile, and software solutions for a diverse clientele, from burgeoning MSMEs to towering Enterprises. Our mission is to engineer products that not only solve complex challenges but also set new benchmarks in the digital realm. At Unified, a job is not simply a job. It is a pursuit of excellence, to build and create, to understand and consult, to imagine and be creative, to reformulate UX, to invent and redefine, to code for performance, to collaborate and communicate.Position Overview We are seeking a highly skilled and motivated Cybersecurity Engineer/Consultant with 8+ years of experience (exceptional candidates with 6+ years and proven expertise may also be considered) to join our dynamic cybersecurity team. In this role, you will lead end-to-end security implementation for our clients, ensuring robust protection of IT infrastructure, systems, and networks. As a Cybersecurity Engineer/Consultant at Unified Infotech, you will identify and mitigate security risks, implement cutting-edge security solutions, ensure compliance with regulatory frameworks, and drive security best practices across organizations. You will collaborate with internal teams and clients to develop and maintain a strong security posture while providing technical leadership in all cybersecurity initiatives.Key ResponsibilitiesJob DescriptionSecurity Assessment & Vulnerability Management • Conduct regular security assessments, penetration testing, and vulnerability scanning for networks, systems, and applications. • Identify, evaluate, and proactively mitigate potential security threats and vulnerabilities. • Perform comprehensive risk analysis and prioritize remediation activities to strengthen security posture. Incident Response & Threat Detection • Lead incident response during security breaches or cyberattacks. • Develop and maintain incident response plans for swift and effective containment, investigation, and recovery. • Implement and manage real-time threat detection systems to monitor and mitigate security incidents. Security Architecture & Implementation • Design and implement secure network architectures, cloud infrastructures, and endpoint security solutions. • Deploy and manage security technologies such as firewalls, IDS/IPS, encryption tools, and endpoint protection platforms. • Ensure compliance with industry security standards and frameworks (e.g., NIST, ISO 27001, SOC2, PCI DSS). Security Best Practices & Policy Development • Work closely with IT, DevOps, and engineering teams to enforce security policies and procedures. • Develop security guidelines and training materials for internal teams and clients. • Promote adherence to security best practices across all business units and organizations. Compliance & Regulatory Requirements • Lead efforts to maintain compliance with GDPR, HIPAA, PCI DSS, and other applicable industry regulations. • Prepare and maintain security documentation, reports, and audit records to ensure regulatory compliance. Security Implementation & Client EngagementJob Description • Directly manage security implementation for client projects, ensuring seamless security integration. • Collaborate with client teams to assess security needs and deploy customized security solutions. • Conduct security training sessions, workshops, and knowledge-sharing activities for internal and external stakeholders. Ongoing Research & Development • Stay current with the latest cybersecurity trends, threats, and emerging technologies. • Research and implement new tools, techniques, and methodologies to improve security capabilities.Desired Candidate Profile Education & Certifications • Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience). • Relevant cybersecurity certifications, such as: o CISSP, CISM, CEH, CompTIA Security+ o AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer (preferred for cloud security expertise).Experience • 8+ years of experience in cybersecurity (exceptional candidates with 6+ years and a proven track record may be considered). • Hands-on experience with a wide range of security tools, including: o SIEM solutions, IDS/IPS, firewalls, endpoint security, threat intelligence platforms.• Experience with security frameworks and standards (e.g., NIST, ISO 27001, SOC2, PCI DSS). • Strong expertise in cloud security (AWS, Azure, Google Cloud) and securing multi-cloud environments. • Direct experience in implementing security solutions for clients, not just advisory roles.Job DescriptionTechnical Skills • Strong knowledge of networking protocols (TCP/IP, DNS, VPNs, SSL/TLS, IPSec). • Hands-on experience with penetration testing and vulnerability scanning tools. • Experience with scripting/automation (Python, Bash, PowerShell) for security operations. Soft Skills • Strong analytical and problem-solving abilities. • Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders. • Ability to work under pressure and handle security incidents with professionalism. • Strong attention to detail, organizational, and time-management skills. Preferred Qualifications • Familiarity with MITRE ATT&CK framework and threat intelligence platforms. • Experience in incident management and forensic analysis. • Hands-on experience with DevSecOps practices, integrating security into the SDLC. • Experience with security automation tools, such as Infrastructure-as-Code security and compliance automation.Why Join Us? • Lead security implementations for cutting-edge projects in a growing and innovative company. • Work with leading technologies and frameworks in cybersecurity, cloud security, and DevSecOps. • Opportunity to stay ahead of the curve by researching and deploying the latest security innovations. • Collaborative work environment with a focus on continuous learning and professional development.