Infosec Engineer

InfoSec Engineer - Onsite - Karachi

Company Overview:

Hiring for one of our Tech Solution providers in Karachi.

Job Description:

1. Develop and implement security strategies to safeguard our Cloud infrastructure,
on-prem systems, applications, and data.
2. Perform risk assessments, vulnerability scans, and penetration testing; provide
actionable insights to mitigate risks.
3. Collaborate with Product and Engineering teams to embed security best practices
into the software development lifecycle (SDLC).
4. Manage and enhance our incident response plans, ensuring timely and effective
resolution of security incidents.
5. Lead initiatives to achieve and maintain compliance with industry standards and
regulations (e.g., ISO 27001, PCI-DSS, SOC 2, GDPR).
6. Conduct security awareness trainings and workshops for Employees across the
organization.
7. Implement and manage SIEM tools, IDS/IPS, WAFs, Firewalls, and other security
technologies.
8. Monitor and analyze security alerts, logs, and data from both cloud and on-prem
environments to proactively address potential threats.
9. Work with stakeholders to prioritize and remediate vulnerabilities promptly.
10. Maintain and secure critical on-prem infrastructure, ensuring alignment with overall security policies and practices.
11. Stay updated on emerging threats, vulnerabilities, and technologies to improve our security posture continuously.

Qualifications

1. Experience: 4+ years in InfoSec, Cyber Security, or Cloud Security roles, with at least 3 years in a senior capacity.
2. Education: Bachelors degree in Computer Science, Information Technology, or a
related field (or equivalent experience).
3. Certifications: Relevant certifications such as CISSP, CISM, CEH, AWS Security
Specialty, or Azure Security Engineer are highly desirable.

Technical Skills

1. Hands-on experience with Public Cloud platforms (AWS, Azure, or GCP) and on-
prem infrastructure.
2. Broad experience across different Operating Systems and environments (Cloud, on- prem, VMs, etc.).
3. Strong understanding of networks, network architecture, and networking concepts.
4. Hands-on practitioner proficient in security tools such as SIEMs, IDS/IPS, WAFs,
Network Firewalls, vulnerability scanners, and endpoint protection.
5. Strong understanding of network security, cryptography, and application security.
6. Practical knowledge of and experience with ISO/IEC 27001, OWASP, NIST, CIS, and
PCI-DSS standards and frameworks.
7. Experience with DevSecOps practices and CI/CD pipelines.
8. Knowledge of on-prem server security, network configurations, and physical access
controls.
9. Bonus points for being hands-on with Python and shell scripting.

Other Details: 

Experience: 4+ years in InfoSec - Cyber sec

Location: Shahre Faisal

Salary: Market Competitive

Timings: Monday to Friday 

About HR Ways: HR Ways is an Award winning Technical Recruitment Firm helping software houses and IT Product companies internationally and locally to find IT Talent. HR Ways is engaged by 300+ Employers worldwide ranging from worlds biggest SaaS Companies to most competitive Startups. We have entities in Dubai, Canada, US, UK, Pakistan, India, Saudi Arabia, Portugal, Brazil and other parts of the world. Join our Whatsapp Channel https://shorturl.at/983az to stay updated or visit www.hrways.co to know more.

Helpful Links:

FAQs: www.hrways.co/faq

Jobs: www.hrways.co/jobs

Blogs: www.hrways.co/blog