IT Cybersecurity

Cybersecurity Analyst – Semi Senior (SSR)

🏢 About ENG Cybersecurity

Security is a core pillar of our services and internal operations, and we are expanding our cybersecurity team to strengthen our defensive and monitoring capabilities.

🔐 Role Overview

We are looking for a Semi Senior Cybersecurity Analyst to help protect our infrastructure, applications, and data. The ideal candidate has hands-on experience with security monitoring, incident response, and vulnerability management, and is comfortable working collaboratively with DevOps, development, and IT teams.

You will play a key role in identifying threats, responding to incidents, and continuously improving our security posture by conducting regular controls based on SOC2 and ISO 27001.

🛠️ Key Responsibilities

· Monitor security alerts and logs from SIEM, EDR, and cloud security tools

· Investigate and respond to security incidents (triage, containment, remediation)

· Perform vulnerability assessments and support remediation efforts

· Assist in security hardening of systems, networks, and cloud environments

· Review access controls, permissions, and identity configurations

· Participate in security audits, risk assessments, and compliance activities

· Develop and maintain security documentation, procedures, and playbooks

· Collaborate with DevOps and engineering teams to embed security best practices

· Stay up to date with emerging threats, vulnerabilities, and attack techniques

✅ Required Skills & Experience

· 2–4 years of experience in cybersecurity, information security, or related roles

· Solid understanding of:

o Networking concepts (TCP/IP, DNS, HTTP, VPNs, firewalls)

o Common attack vectors (phishing, malware, web attacks, privilege escalation)

o Security fundamentals (CIA triad, least privilege, defense in depth)

· Hands-on experience with at least some of the following:

o SIEM tools (Splunk, Elastic, Sentinel, QRadar, etc.)

o Endpoint security / EDR solutions (Preferably Microsoft Suite)

o Vulnerability scanners (Nessus, Qualys, OpenVAS, etc.)

o Microsoft 365 environment

· Familiarity with Linux and Windows environments

· Cloud security experience (AWS, Azure, GCP)

· Basic scripting or automation skills (Bash, Python, PowerShell – at least one)

· Ability to document findings clearly and communicate technical risks effectively

⭐ Nice to Have (Not Mandatory)

· Knowledge of DevSecOps practices and CI/CD security

· Experience with containers security

· Exposure to compliance frameworks (ISO 27001, SOC 2, NIST, CIS)

· Security certifications (Security+, CEH, Blue Team Level 1, etc.)

🧠 Soft Skills

· Advanced English (written, spoken, and reading).

· Analytical and problem-solving mindset

· Strong attention to detail

· Ability to prioritize and manage multiple incidents or tasks

· Team-oriented, collaborative approach

· Curiosity and willingness to continuously learn