6 Cybersecurity jobs in Karachi

The Infrastructure and Cybersecurity Engineer holds a pivotal role in the efficient operation, maintenance, and security of the company's IT systems. This position requires a blend of hands-on technical expertise and strategic security implementation. The engineer will be responsible for designing, implementing, and managing the company's network, servers, and software, with a strong emphasis on cybersecurity measures to protect sensitive information and ensure regulatory compliance. This role involves contributing to IT projects, managing hardware and software, and safeguarding the network against threats and vulnerabilities

DUTIES & RESPONSIBILITIES

• Lead the secure design and deployment of IT projects from inception to completion.
• Monitor network traffic to optimize performance, reliability, and security.
• Implement and manage security tools, including firewalls and intrusion detection systems, to defend against
• cyber threats.
• Manage software and application lifecycle, including installation, patching, and updates.
• Administer Google Workspace and Office 365 environments, managing user accounts and configurations.
• Perform maintenance, troubleshooting, and upgrades on hardware such as servers, switches, and storage.
• Evaluate vendor security and develop test strategies for new hardware and software.
• Provide advanced support for complex hardware and software issues through in-depth research and
• resolution.
• Manage SSL certificate installation and renewal to ensure secure communication.
• Document network configurations, IT procedures, and troubleshooting steps.
• Prioritize tasks effectively while working independently in a hybrid environment.
• Contribute to developing IT security policies and incident response plans to ensure compliance and address
• emerging threats.
• Manage the IT infrastructure and cybersecurity budget for optimal resource allocation.
• Develop and implement employee cybersecurity awareness and training programs.
• Perform other duties as assigned.

KNOWLEDGE & EXPERIENCE

Education:

• Bachelor's degree in Information Technology, Computer Science, Information Systems, or a related field, or equivalent experience.

Experience:

• 5+ years of progressive experience in IT operations, including system and network administration.
• Demonstrated, hands-on experience with a strong focus on cybersecurity, including implementing security protocols, firewalls, and measures to safeguard against cyber threats.
• Proven experience leading or playing a key role in IT infrastructure projects, from design and inception to the deployment of new systems and services.
• Minimum of 2 years in a role requiring project leadership, team lead responsibilities, or mentorship of technical staff

Credentials:

• Relevant industry certifications are a plus, such as CompTIA Security+, CompTIA Network+, Cisco
• Certified Network Associate (CCNA), or Microsoft/Google certifications.

Knowledge and Skills:

• Lead and manage large IT projects, overseeing the rollout of IT infrastructures across various technologies.
• Excellent working knowledge of computer systems, security, network and systems administration, databases, and data storage systems.
• Proven ability to lead and manage IT projects and the rollout of IT infrastructures.
• Proficiency in software and hardware troubleshooting.
• Extensive experience with network monitoring tools and Google Workspace/O365 administration.
• Thorough understanding of network security best practices and emerging cybersecurity threats.
• Strong communication, interpersonal, and project management skills with the ability to prioritize effectively.
• Proven ability to adapt to new technologies and implement solutions effectively.

Position: Cybersecurity Part-Time Trainer

Location: Shahra e Faisal, Karachi

Type: Part-Time

Compensation: Fixed compensation (disclosed at the time of interview)

Job Overview:

We are seeking an experienced Cybersecurity professional to join our academy as a part-time trainer. The trainer will be responsible for delivering interactive lectures, conducting practical sessions, and preparing students for industry-relevant certifications.

Key Responsibilities:

• Design and deliver training sessions on cybersecurity fundamentals, ethical hacking, network security, and related topics.
• Develop course materials, lab exercises, and assessments.
• Stay updated with the latest cybersecurity trends and integrate them into lessons.
• Mentor and guide students towards practical skills and career readiness.

Job Specification:

• Bachelor's/Master's in Computer Science, IT, or related field (preferred).
• Industry certifications such as CEH, CISSP, CompTIA Security+, or equivalent.
• Minimum 2–3 years of professional experience in cybersecurity.
• Strong knowledge of network security, ethical hacking, and threat analysis.
• Excellent communication and presentation skills.
• Prior teaching/training experience will be an advantage.

Job Type: Full-time

Pay: From Rs10,000.00 per month

Work Location: In person

• Take ownership of firewall and VPN rollout, ensuring timely execution and achievement of cost savings.
• Provide second-shift support to improve responsiveness during outages and ensure continuity.
• Manage coordination with FedEx, ensuring that external dependencies do not delay internal progress.

Job Type: Full-time

Pay: Rs50, Rs80,000.00 per month

Work Location: In person

Are you an experienced cybersecurity professional eager to take on a key role in securing Digital Retail Banking (DRB) operations? We are looking for a Cybersecurity Specialist to lead the implementation and monitoring of SIEM/SOC solutions, conduct security testing, and manage security tools such as antivirus, endpoint protection, and data leak prevention. This role ensures compliance with security frameworks and enforces cybersecurity policies to protect critical banking infrastructure. If you have a passion for threat management, vulnerability assessments, and security architecture, this is your chance to make a real impact

Threat & Incident Management:

• Identify, assess, and mitigate cybersecurity threats across digital banking platforms.
• Support incident response by analyzing security events and escalating issues.
• Manage access control policies to prevent unauthorized access to sensitive data.

Security Tools Management:

• Deploy, configure, and manage SIEM/SOC solutions (QRadar, Splunk, ArcSight, Wazuh, etc.).
• Maintain and optimize antivirus, endpoint protection, and data leak prevention tools.
• Continuously evaluate security tools to enhance detection and response capabilities.

Technical Security Implementation:

• Design and implement network security controls (firewalls, IDS/IPS, VPNs).
• Conduct vulnerability assessments and penetration tests on networks, applications, and systems.
• Implement patch management strategies to address security gaps.

Security Architecture & Compliance:

• Ensure compliance with MITRE ATT&CK, NIST, PCI-DSS, ISO 27001, and regulatory standards.
• Monitor security event logs and analyze anomalies for proactive threat detection.
• Work with cross-functional teams to integrate security best practices across cloud and on-prem environments.

Research & Development:

• Track emerging cyber threats and enhance detection techniques.
• Conduct threat intelligence analysis and proactively implement risk mitigation measures.
• Lead cybersecurity awareness initiatives and train internal teams on security protocols.

Documentation & Reporting:

• Maintain system documentation, incident response playbooks, and escalation procedures.
• Generate security reports and dashboards for continuous security posture improvement.

Requirements

• Bachelor's degree in Computer Science, IT, Cybersecurity, or a related field.
• 7-9 years of experience in infrastructure security, cybersecurity operations, or penetration testing.
• Expertise in SIEM implementation & security monitoring using QRadar, Splunk, ArcSight, Wazuh, or similar platforms.
• Strong knowledge of network security protocols, firewalls, IDS/IPS, VPNs, and endpoint security.
• Hands-on experience with security testing tools (Metasploit, Burp Suite, Nessus, etc.).
• Proficiency in scripting and automation (Python, PowerShell, Bash) to improve security controls.
• Experience with cloud security best practices (AWS, Azure, Google Cloud) and securing virtual environments.
• Familiarity with forensic investigation techniques, malware analysis, and threat intelligence.
• Professional certifications such as CISSP, CEH, OSCP, or vendor-specific security credentials are a plus.

COMPANY OVERVIEW :

Our client, a Karachi-based, State Bank of Pakistan (SBP) regulated Electronic Money Institution (EMI), seeks to appoint an experienced professional for the following role:

As Manager Information Security, you will be responsible for establishing and enforcing security protocols that safeguard companys information systems, digital assets, and customer data.

Key Areas of Responsibilities

• Develop & Implement Information Security Strategy Design and execute a comprehensive information security roadmap aligned with companys digital infrastructure, business model, and regulatory obligations.
• Cybersecurity Risk Management Identify, assess, and mitigate cybersecurity risks across infrastructure, applications, APIs, mobile platforms, and third-party integrations.
• Regulatory Compliance & SBP Alignment Ensure full compliance with SBP guidelines and international security frameworks (e.g., ISO 27001, NIST), and act as the point of contact for regulator-driven security reviews.
• Security Architecture & Operations Oversee the design, configuration, and monitoring of security systems including firewalls, endpoint protection, SIEM, encryption, and identity/access management tools.
• Incident Response & Threat Management Develop and lead the incident response process, including detection, containment, investigation, recovery, and post-mortem reporting.
• Security Audits & Penetration Testing Coordinate regular internal and third-party audits, vulnerability assessments, and penetration testing to ensure system hardening.
• Employee Awareness & Policy Enforcement Establish security awareness programs, train internal staff, and enforce information security policies across all departments.
• Collaboration with Internal Audit & IT Work closely with Internal Audit, Technology, and Compliance teams to ensure consistent enforcement of risk controls and secure infrastructure design.

Education

• Minimum 16 years of education, preferably, Masters from a renowned and HEC recognized university or institution/equivalent foreign degree holder institution, in any/or combination of the disciplines
• Professional certifications such as CISSP , CISM , CEH , or ISO 27001 Lead Implementer/Auditor are highly desirable

Experience

• Information Security Expertise Minimum 5 years of relevant experience in information security or cybersecurity roles, preferably within fintech, digital banking, or regulated financial institutions
• Regulatory & Standards Knowledge Strong understanding of SBP cybersecurity guidelines, ISO 27001, NIST, and relevant global information security frameworks
• Incident Management & Threat Response Demonstrated experience in handling security incidents, vulnerability assessments, and threat intelligence operations
• Security Operations & Architecture Hands-on experience with firewalls, IDS/IPS, antivirus, endpoint protection, IAM, encryption, and secure network architecture

Age

• The candidate should be preferably not more than 40 years of age as of last date of submission of application.
  

If you have the required experience and educational qualification to take up the challenging role, you are requested to apply by October 24 , 2025 at

Only shortlisted candidates will be contacted.