Cyber Security Engineer

Role Description

The Cybersecurity Engineer will play a critical role in strengthening and operating the client’s security operations program, with strong emphasis on

Fortinet firewall administration ,

ISO 27001 compliance , continuous monitoring using

Wazuh SIEM , and end-to-end Vulnerability Assessment & Penetration Testing (VAPT). The role ensures a multi-layered, proactive security posture across infrastructure, applications, and cloud environments.

While Security Operations is the primary responsibility, the engineer will also support secure SDLC activities such as

code reviews and SAST . AI automation and agent workflows are optional and treated as low-priority support functions.

Key Responsibilities

Administer and optimize

Fortinet Firewall (FortiGate)

including firewall rules, VPNs, IPS / IDS, routing, logging, and continuous monitoring.

Maintain and monitor

Wazuh SIEM

for log collection, correlation rules, dashboards, threat detection, and incident response workflows.

Perform real-time monitoring, alert triage, incident analysis, and escalation.

Conduct internal / external

VAPT assessments

across network, applications, APIs, and cloud workloads.

Manage endpoint protection, anti-malware, and host-based intrusion detection.

Perform continuous infrastructure hardening for servers, endpoints, and network devices.

Lead root-cause analysis for incidents and ensure long-term corrective actions are implemented.

Perform scheduled vulnerability scanning, penetration testing, and exploit verification.

Track and prioritize vulnerabilities using a structured risk-based approach and collaborate with engineering teams for timely remediation.

Review cloud security configurations (AWS / Azure / GCP), container security, and API security.

Implement and maintain ISO 27001 : 2022 controls specifically related to Operations Security, Network Controls, Access Control, Logging & Monitoring, Backup, and Secure Configuration.

Prepare audit-ready evidence and documentation for internal / external ISMS audits.

Conduct periodic user access reviews, privilege reviews, and ensure enforcement of least-privilege principles.

Execute

SAST

security reviews, dependency scans, and basic secure code assessments during development.

Integrate security checks into CI / CD pipelines (GitLab / GitHub Actions / Jenkins).

Support developers with secure coding guidance and review of critical code blocks.

Maintain DAST / SCA scans for production and pre-release environments.

Assist in building optional n8n / Flowise automation workflows for evidence collection, access reviews, or recurring SOC tasks.

Qualifications

Bachelor’s degree in Engineering, Computer Science, Cybersecurity, or a related field.

4+ years of hands-on experience in

Security Operations ,

Network Security , or

Security Engineering .

Strong expertise in

Fortinet security technologies , including FortiGate, EMS, and FortiAnalyzer.

Practical, real-world experience with

Wazuh SIEM —covering log ingestion, rule creation / tuning, dashboard configuration, and alert correlation.

Proven experience conducting

Vulnerability Assessment & Penetration Testing (VAPT)

and managing the complete vulnerability remediation lifecycle.

Solid understanding of

ISO 27001 : 2022 controls , ISMS operations, audit preparation, and evidence management.

Working knowledge of

SAST / DAST / SCA

tools and secure SDLC principles.

Experience securing cloud platforms ( AWS, Azure, GCP ) with strong grounding in cloud security best practices.

Scripting proficiency in

Python ,

Go , or

Node.js

for automation tasks and tool integrations.

Exposure to workflow automation platforms (e.g.,

n8n ,

Flowise ) or basic AI agent logic is an added advantage.