Senior Cybersecurity Engineer
Indexed description
Job Requirements
Required Qualifications
- 7+ years’ hands-on experience in cybersecurity / security operations / security engineering, including time in a senior or lead capacity.
- Demonstrated experience implementing and evidencing controls under PCI DSS (and/or ISO 27001, NIST CSF, CIS Benchmarks).
- Proven incident-response ownership across the full lifecycle, from triage to post-incident review.
- Experience working alongside or managing an MDR / managed SOC service, including escalation governance and SLA oversight.
- Degree in Computer Science, Information Security or a related field, or equivalent practical experience.
- Deep, hands-on SIEM/XDR and EDR operation, tuning and detection engineering.
- Administration of email security, DLP, SASE and VPN platforms.
- WAF, API security and DDoS mitigation (Cloudflare or comparable edge platforms).
- Strong grasp of network-security fundamentals — TCP/IP, DNS, HTTP/S — and common attack techniques.
- Excellent documentation (SOPs, runbooks, incident reports) and calm, clear stakeholder communication under pressure.
Nice-to-have / Preferred
- Hands-on Check Point Harmony (Endpoint, Email & Collaboration, SASE) and/or Check Point managed-services experience; Cloudflare Enterprise (WAF, DDoS, Bot Management).
- Industry certifications (CISSP, GIAC GCIH/GCIA/GMON, Check Point, Cloudflare, Security+) and prior payment-gateway, fintech or PCI DSS Level 1 experience.
- Serve as the senior in-house L2/L3 escalation point during business hours and own incident response end-to-end: triage, containment, eradication, recovery, root-cause analysis and post-incident review.
- Act as technical owner of the co-sourced MDR / managed security service providing out-of-hours L1/L2 coverage — maintain the escalation matrix, validate handoffs and oversee service quality and SLAs across the 24/7 window.
- Operate, tune and harden the enterprise security stack (SIEM/XDR, EDR, email security, DLP, SASE/VPN, WAF, DDoS) and maintain detection content, correlation rules and incident-response playbooks.
- Drive the implementation and evidencing of PCI DSS technical controls (Requirements 1, 4, 5, 7, 8, 10, 11, 12) with the Cybersecurity Lead and QSA, including Cloudflare Layer 7 / WAF / DDoS architecture input.
- Review phishing and suspicious email, investigate malware and anomalous behaviour, handle senior security tickets, and support periodic access reviews and audits.
- Author and maintain SOPs, runbooks and incident reports; mentor operational staff and reduce single-point-of-failure risk.
- Competitive salary package aligned with experience and market standards.
- Medical Insurance starting from day 1.
- Access to training resources and development opportunities that support your professional growth.
- Well-stocked office with snacks, drinks, and refreshments available daily.
- A multinational organisation that promotes a strong, collaborative culture
- Regular team-building events and company activities that strengthen collaboration across teams.
- Employee Recognition Program celebrating our "Employee of the Month" with special perks.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search