Cyber Security Specialist

Job Summary:

We are seeking a highly experienced Cybersecurity Specialist to design, implement, and maintain robust security strategies that safeguard our organization's systems, networks, and data. The ideal candidate will have deep technical knowledge, hands-on experience with a wide range of security tools, and a thorough understanding of compliance standards and threat mitigation techniques.

Key Responsibilities:

Security Architecture & Strategy:

• Design and implement security architecture aligned with industry best practices and regulatory requirements.
• Continuously update security architecture to address emerging threats and vulnerabilities.
• Develop and maintain security policies, procedures, and technical guidelines.

Compliance & Risk Management:

• Ensure adherence to compliance standards including GDPR, HIPAA, PCI-DSS, and other applicable regulations.
• Conduct regular risk assessments and vulnerability evaluations across infrastructure and applications.
• Collaborate with internal and external auditors to ensure effective compliance controls.

Incident Response & Forensics:

• Lead investigations into security incidents, perform root cause analysis, and implement corrective actions.
• Conduct forensic analysis to preserve evidence and support post-incident review processes.
• Maintain detailed records of incidents and responses in accordance with legal and organizational standards.

Training & Awareness:

• Develop and deliver security awareness training programs across the organization.
• Conduct phishing simulations and social engineering exercises to assess employee preparedness.

Security Operations:

• Monitor, manage, and maintain endpoint protection, firewalls, IDS/IPS, and other security tools.
• Evaluate, deploy, and integrate new security technologies to enhance defense posture.
• Maintain relationships with the National Cyber Security Agency (NCSA) and ensure regulatory reporting and communication.

Business Continuity & Disaster Recovery:

• Develop, test, and maintain disaster recovery and business continuity plans.
• Ensure systems and data can be recovered efficiently with minimal operational impact.

Collaboration & Governance:

• Work closely with IT, DevOps, legal, compliance, and third-party vendors to ensure end-to-end security coverage.
• Participate in change management processes to assess security risks in proposed changes.

Qualifications:

• Minimum of 5 years of experience in cybersecurity or related roles.
• Proven track record in incident management, threat analysis, and security policy enforcement.
• Strong knowledge of network security, endpoint protection, SIEM, and vulnerability management.
• Familiarity with security frameworks (e.g., NIST, ISO 27001, CIS Controls).

• CISSP – Certified Information Systems Security Professional
• CCSP – Certified Cloud Security Professional
• CISM – Certified Information Security Manager
• CISA – Certified Information Systems Auditor
• CEH – Certified Ethical Hacker
• ECSA – EC-Council Certified Security Analyst
• CHFI – Computer Hacking Forensic Investigator
• GPEN – GIAC Penetration Tester
• GSEC – GIAC Security Essentials Certification