As a Senior Cyber Security Consultant will be responsible for designing, implementing, testing, documenting, and handing over security solutions with a strong emphasis on Security by Design principles. This role includes deploying and managing SIEM, SOAR, UEBA, TIPs, DAM, and cloud security across AWS and Azure environments. Additionally, the consultant will leverage Infrastructure as Code (IaC) tools like Terraform to automate security infrastructure, conduct security assessments (SSAT, OSAT, IAT, UAT), and perform system hardening to mitigate vulnerabilities.
What will you do
- Security by Design: Integrate security into all stages of system design and development, performing risk assessments and threat modeling as required.
- Implementation & Automation: Deploy and manage SIEM, SOAR, UEBA, and cloud security solutions; automate security infrastructure using Terraform and other IaC tools.
- Testing & Hardening: Conduct System Security Acceptance Testing (SSAT), Operational Security Acceptance Testing (OSAT), Integration Acceptance Testing (IAT), User Acceptance Testing (UAT), and system hardening.
- Documentation & Handover: Develop detailed documentation for security controls and processes, ensuring smooth handover to the operations team with operational security management guides.
- Log Management & Monitoring: Implement log management systems to centralize security event data and monitor AWS and Azure environments effectively.
- Security Operations: Provide expertise in threat detection, incident response, and proactive security enhancements.
The ideal candidate should possess:
- Bachelor's or Master's degree in Cyber Security, Information Technology, or a related field.
- 7+ years of experience in cybersecurity roles, with hands-on experience in SIEM, SOAR, and cloud security solutions.
- Strong expertise in Terraform, Infrastructure as Code (IaC), and automation frameworks.
- Proficiency in AWS and Azure security controls and monitoring tools.
- Experience with security testing methodologies and system hardening.
- Preferred Certifications: CISSP, CISM, CEH, or equivalent.
- Added Advantage: Experience in Qradar, Splunk, Google SecOps, Imperva DAM
