Cyber Security Specialist

I am seeking an experienced and highly skilled Cyber Security Specialist with experience in various domains of cybersecurity. The ideal candidate will have extensive hands-on experience in cybersecurity architecture, network security, cloud security, and incident management. This role will be responsible for designing, implementing, and managing robust security solutions to protect organizational assets, ensuring compliance with industry standards and regulations, and driving security initiatives to mitigate risks.Responsibilities:Security Architecture & Design:Design, review, and implement comprehensive security controls for both on-premises and cloud environments, ensuring alignment with IT security policies, standards, and guidelines.Design lead for end-to-end cyber capabilities for operational technology (OT) and Information Technology (IT), as per Cyber goals and company’s strategyDevelop and manage network security architecture including the design of LLDs (Low-Level Designs) and HLDs (High-Level Designs) for data centers and hub sites.Lead the design and deployment of advanced security solutions such as firewalls, SASE, CASB, DLP, and PKI in network and cloud environments.Cloud Security:Manage and secure cloud infrastructure using AWS and Azure security tools, including WAF, AWS Shield, GuardDuty, Security Hub, and IAM.Oversee cloud migration projects, ensuring the implementation of security policies and best practices.Perform risk assessments, identify missing security controls, and provide guidance on cloud governance.Incident & Risk Management:Conduct security risk assessments for new and existing projects, providing security engineering expertise as needed.Manage and resolve security incidents, escalations, and production issues, providing L3 support and mentoring L2 teams.Lead incident and change management processes, ensuring minimal disruption to business operations.Compliance & Audit:Manage and ensure compliance with security frameworks and standards such as ISO 27001, NIST 800-53, SOC2, and CSA CCM.Conduct internal network audits, BCP/DR activities, and security gap analysis, implementing mitigation controls as necessary.Collaborate with external and internal audit teams, documenting security standards, SOPs, and updating runbooks.Security Operations:Oversee the deployment, configuration, and management of security technologies including firewalls, email gateways, web proxies, antivirus solutions, and load balancers.Implement and manage endpoint security solutions, intrusion prevention systems (IPS), DLP, and SIEM tools such as Splunk.Perform vulnerability assessments, penetration testing (including OWASP, network, and privilege escalation testing), and secure SDLC processes.Leadership & Strategy:Provide strategic input into the organization’s technical roadmap, focusing on enhancing the security posture.Lead POCs and deployment of new security technologies, transitioning services to operations teams and ensuring seamless handover.Drive continuous improvement initiatives within the cybersecurity infrastructure, assessing the impact of technological changes.Qualifications:Bachelor’s degree in Computer Science, Information Technology, or a related field. Master’s degree is a plus.Certifications: CCSP, AWS Security Specialty, Azure Security Certified, CCNA, CCNP Security, CEH, ISO 27001 Lead Implementer and Auditor, Palo Alto ACE.Extensive experience with firewall technologies (Cisco ASA, CheckPoint, Palo Alto), email security (Cisco Ironport, Sophos), VPNs, DLP, and network monitoring tools.Proficient in cloud security (AWS, Azure), SASE, CASB, IAM, and encryption technologies.Strong knowledge of security compliance, risk management, and incident response.Strong analytical and problem-solving skills, with the ability to conduct root cause analysis and implement effective solutions.Excellent communication and interpersonal skills, with the ability to interact with senior management and cross-functional teams.Experience in conducting security audits, preparing security documentation, and leading security-related projects.