Security Engineer

Job Title: Security Engineer

Experience: 4–6 Years

Location: Pakistan (Hybrid)

Employment Type: Full-Time

Job Summary

We are seeking an experienced Security Engineer to design, implement, and maintain security controls across cloud and on-premises environments. You will work closely with infrastructure, DevOps, and application teams to ensure a strong, consistent security posture across all systems.

Key Responsibilities

• Design and manage network security controls including firewalls, IDS/IPS, VPNs, and network segmentation
• Implement and evolve zero-trust security models with least-privilege access
• Configure and maintain identity and access management solutions (MFA, SSO, PAM, RBAC)
• Implement encryption standards for data at rest and in transit; manage keys and certificates
• Deploy and manage security monitoring, logging, and alerting infrastructure
• Analyze security events, investigate incidents, and lead response activities
• Perform vulnerability assessments and coordinate remediation efforts
• Develop and maintain security policies, procedures, and documentation
• Collaborate with teams to integrate security into CI/CD pipelines and infrastructure
  
  

Required Skills & Qualifications

• 4–6 years of experience in information/network security
• Strong expertise in firewall configuration, rule management, and troubleshooting
• Proficiency with VPN technologies (IPSec, SSL, site-to-site, remote access)
• Deep understanding of network protocols (TCP/IP, DNS, HTTP/HTTPS, SSL/TLS)
• Hands-on experience with zero-trust principles and data encryption
• Experience with security monitoring and SIEM tools
• Strong knowledge of Linux and Windows security hardening
  
  

Preferred Certifications

• CompTIA Security+, CEH, or CySA+
• CISSP or CISM
• Cloud security: AWS Security Specialty, Azure AZ-500, or GCP Professional Security Engineer
• CCSP, CompTIA Network+, or GIAC certifications
  
  

Good to Have

• Experience securing AWS, Azure, or GCP environments
• Familiarity with container security and infrastructure-as-code
• Scripting skills (Python, Bash, PowerShell)
• Knowledge of compliance frameworks (ISO 27001, SOC 2, PCI-DSS, NIST)