Job Description
Role Description
The Cybersecurity Engineer will play a critical role in strengthening and operating the clientโs security operations program, with strong emphasis on
Fortinet firewall administration ,
ISO 27001 compliance , continuous monitoring using
Wazuh SIEM , and end-to-end Vulnerability Assessment & Penetration Testing (VAPT). The role ensures a multi-layered, proactive security posture across infrastructure, applications, and cloud environments.
While Security Operations is the primary responsibility, the engineer will also support secure SDLC activities such as
code reviews and SAST . AI automation and agent workflows are optional and treated as low-priority support functions.
Key Responsibilities
Administer and optimize
Fortinet Firewall (FortiGate)
including firewall rules, VPNs, IPS/IDS, routing, logging, and continuous monitoring.
Maintain and monitor
Wazuh SIEM
for log collection, correlation rules, dashboards, threat detection, and incident response workflows.
Perform real-time monitoring, alert triage, incident analysis, and escalation.
Conduct internal/external
VAPT assessments
across network, applications, APIs, and cloud workloads.
Manage endpoint protection, anti-malware, and host-based intrusion detection.
Perform continuous infrastructure hardening for servers, endpoints, and network devices.
Lead root-cause analysis for incidents and ensure long-term corrective actions are implemented.
Perform scheduled vulnerability scanning, penetration testing, and exploit verification.
Track and prioritize vulnerabilities using a structured risk-based approach and collaborate with engineering teams for timely remediation.
Review cloud security configurations (AWS/Azure/GCP), container security, and API security.
Implement and maintain ISO 27001:2022 controls specifically related to Operations Security, Network Controls, Access Control, Logging & Monitoring, Backup, and Secure Configuration.
Prepare audit-ready evidence and documentation for internal/external ISMS audits.
Conduct periodic user access reviews, privilege reviews, and ensure enforcement of least-privilege principles.
Execute
SAST
security reviews, dependency scans, and basic secure code assessments during development.
Integrate security checks into CI/CD pipelines (GitLab/GitHub Actions/Jenkins).
Support developers with secure coding guidance and review of critical code blocks.
Maintain DAST/SCA scans for production and pre-release environments.
Assist in building optional n8n/Flowise automation workflows for evidence collection, access reviews, or recurring SOC tasks.
Qualifications
Bachelorโs degree in Engineering, Computer Science, Cybersecurity, or a related field.
4+ years of hands-on experience in
Security Operations ,
Network Security , or
Security Engineering .
Strong expertise in
Fortinet security technologies , including FortiGate, EMS, and FortiAnalyzer.
Practical, real-world experience with
Wazuh SIEM โcovering log ingestion, rule creation/tuning, dashboard configuration, and alert correlation.
Proven experience conducting
Vulnerability Assessment & Penetration Testing (VAPT)
and managing the complete vulnerability remediation lifecycle.
Solid understanding of
ISO 27001:2022 controls , ISMS operations, audit preparation, and evidence management.
Working knowledge of
SAST/DAST/SCA
tools and secure SDLC principles.
Experience securing cloud platforms ( AWS, Azure, GCP ) with strong grounding in cloud security best practices.
Scripting proficiency in
Python ,
Go , or
Node.js
for automation tasks and tool integrations.
Exposure to workflow automation platforms (e.g.,
n8n ,
Flowise ) or basic AI agent logic is an added advantage.
