Cyber Security Engineer

Avrioc Technologies is seeking a Cyber Security Engineer with a robust background in hands-on security implementation and operations. The ideal candidate will possess a bachelor’s degree, preferably in computer science or a STEM field with a major in Mathematics.

Work Conditions: On-site, Full-time in Abu Dhabi, Abu Dhabi Emirate, United Arab Emirates.

Qualifications:

• Minimum of 5–7 years of experience in a Cybersecurity Engineer or similar technical role.
• Proven expertise with security technologies including:
  • AWS Cloud Security
  • CNAPP tools (e.g., Prisma Cloud, Wiz)
  • Firewalls
  • DevSecOps
  • Privileged Access Management (PAM)
  • Database Activity Monitoring (DAM)
  • Kubernetes security
  • Penetration testing (web and mobile)
  • Application and infrastructure security best practices
  • SIEM
  • Security architecture review
• Hands-on experience integrating and operating security tools across hybrid and cloud-native environments.
• Industry certifications in relevant technologies or domains (e.g., CISSP, AWS Security Specialty, CCSP, GIAC) are highly preferred.

Responsibilities:

• Implement and maintain security controls across cloud and hybrid environments (AWS, Azure, GCP).
• Collaborate with engineering and DevOps teams to integrate DevSecOps practices into CI/CD pipelines.
• Participate in threat modeling, risk assessments, and vulnerability management for applications and infrastructure.
• Deploy, configure, and tune CNAPP tools for continuous security posture management.
• Support secure integration of PAM and DAM platforms ensuring compliance with access control policies.
• Conduct security testing and provide remediation guidance.
• Monitor and analyze security alerts and logs using SIEM tools and assist in incident response.
• Ensure compliance with security policies and regulatory standards such as ISO 27001, GDPR, SOC 2, and PCI-DSS.
• Maintain documentation and contribute to runbooks and playbooks.
• Engage in regular reviews of IAM policies including RBAC, MFA, and SSO integration.
• Participate in security audits and support remediation efforts for internal and external findings.
• Attend and support internal security awareness sessions and training initiatives.
• Stay updated on evolving threats and recommend relevant improvements to tools, configurations, or policies.

Language Requirements: Not specified.