Cyber Security Specialist

Level3 BOS (Pvt.) Ltd. is seeking a Cyber Security Specialist to design, implement, and maintain robust security controls across enterprise systems, networks, and endpoints. The role requires strong hands-on technical expertise in threat detection, incident response, vulnerability management, and compliance-driven security operations.

Key Technical Responsibilities

• Implement, configure, and manage enterprise security solutions, including firewalls, IDS/IPS, EDR/XDR, SIEM, DLP, and antivirus platforms.
• Monitor security events and logs, perform threat analysis, and lead incident detection, response, containment, and remediation.
• Conduct vulnerability assessments, penetration testing, and security hardening of servers, endpoints, and network devices.
• Manage identity and access management (IAM), including user provisioning, RBAC, MFA, password policies, and privileged access.
• Secure on-prem and cloud-based infrastructure (Microsoft 365, Azure/AWS – if applicable).
• Perform network security tasks including segmentation, VPN management, secure remote access, and traffic monitoring.
• Develop, implement, and maintain information security policies, SOPs, standards, and procedures.
• Ensure compliance with recognized security frameworks and standards such as ISO 27001, SOC 2, PCI-DSS, HIPAA (where applicable).
• Coordinate and support internal and external security audits, risk assessments, and gap analysis.
• Perform regular patch management, system updates, and configuration reviews to mitigate security risks.
• Investigate security breaches, conduct root cause analysis, and prepare detailed technical incident reports.
• Conduct security awareness training and provide guidance to IT and business users.
• Continuously research and evaluate emerging threats, vulnerabilities, and security technologies.

Required Technical Skills & Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related discipline.
• 3–5 years of hands-on experience in cybersecurity or information security operations.
• Strong understanding of TCP/IP, DNS, DHCP, VPNs, routing, switching, and firewall rules.
• Practical experience with Windows Server, Active Directory, Linux, and endpoint hardening.
• Experience with log analysis, SIEM correlation rules, alert tuning, and threat intelligence.
• Knowledge of encryption, PKI, SSL/TLS, data protection, and backup security.
• Familiarity with secure SDLC, OWASP Top 10, and basic application security concepts.
• Strong documentation, reporting, and technical communication skills.
• Ability to work onsite, independently, and under pressure during security incidents.

Preferred Certifications

• CEH (Certified Ethical Hacker)
• CISSP / CISM
• CompTIA Security+
• ISO 27001 Lead Implementer or Lead Auditor
• Microsoft / Cloud Security Certifications

Job Type: Full-time

Ability to commute/relocate:

• Karachi: Reliably commute or planning to relocate before starting work (Required)

Application Question(s):

• Comfortable Working in Night Shift (8PM to 5AM)? (Yes / No)

Education:

• Bachelor's (Required)

Experience:

• Cyber Security: 4 years (Required)

Location:

• Karachi (Required)

Work Location: In person