172 Director Of Security jobs in Pakistan

Overview:
- The primary responsibility of the Executive Assistant is to provide support and assist the Director of Security and External Affairs in frequent coordination within PRIDE/IRC, government officials, partners, and other stakeholders. This job also includes the responsibility of regular media scanning and analysis.
- Be the Office Manager of the Security and External Affairs Cell and undertake all routine functions of an office.
- Draft correspondence for issues relating to her/his sphere of duties on behalf of the DS&EA.
- Arrange appointments for the DS&EA and set up schedules for official visiting delegations/visits.
- Work on assignments/projects delegated by the DS&EA as needed, including preparing meeting minutes.
- Coordinate arrangements during trainings for logistics, accommodation, meetings, workshops, and visiting consultants.
- Arrange reception and protocols for expatriates as required.
- Support the DS&EA with District, Provincial, and State Government on all matters of external affairs.
- Participate in professional training and development activities as needed or requested.
- Foster a positive, productive, and professional work environment and relationships amongst staff; facilitate productive working relationships between the central office and the field office.
- Remain flexible and respond to any tasks and assignments deemed necessary by the S&EA Cell.
- Travel to site areas to support the DS&EA.

Required Qualifications and Experience:
- University degree with at least 3-5 years of relevant experience (media and office management).
- Strong administrative, communication, organizational, and planning skills.
- Excellent computer skills in word processing and other MS Office software.
- Good interpersonal skills.
- Ability to take initiative.

Information Technology and Services - Islamabad, Pakistan

Responsibilities

• Detect and respond to cyber security threats to ensure your organization operates securely.
• Partner with the existing internal SOC team across the world and keep the CISO informed about security Incidents.
• Act as a liaison between the SOC team, other internal stakeholders, and external parties such as vendors, clients, or regulatory bodies.
• Monitor security systems and networks for potential security breaches or incidents.
• Conduct in-depth investigations into security incidents to determine the root cause and extent of the compromise.
• Develop and implement incident response plans and procedures to contain, eradicate, and recover from security incidents.
• Coordinate with cross-functional teams, including IT, legal, and senior management, to respond to and mitigate security incidents.
• Document incident response activities, including findings, actions taken, and lessons learned, for future reference and improvement.
• Provide guidance and mentor junior members of the latest security trends techniques.
• Stay current with emerging cybersecurity threats, vulnerabilities, and trends to proactively enhance incident response capabilities.
• Define and Drive tabletop exercises and simulated incident scenarios to test and improve incident response readiness.
• Carry Table-top exercise for Customer on various Incident Response Scenarios
• Collaborate with external partners, such as law enforcement and industry peers, to share threat intelligence and best practices.
• Develop incident management plans and procedures, surveying the networks for signs of a breach, and coordinating and executing tabletop exercises to practice, develop plans, policies, and procedures.
• Perform proactive threat hunts to identify threats and assess the state of security controls; work with in-house red teams to detect offensive operations, and capture and action findings.
• Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements.
• Proactive identification of threats and risk remediation.
• Generate metrics for the Management as needed. Prepare system security reports by collecting, analyzing, and summarizing data and trends.
• Define and participate in implementation of On-prem and Cloud architecture and security controls.
• Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.

Qualifications

• 6 – 10 years of proven experience in Security incident response handling, Vulnerability Management or Penetration testing; a master's degree can be substituted for experience.
• Practical experience with threat detection, monitoring and incident response and implementation, ability to query and write detection rules, and management of security related technologies, (i.e., SIEM (Qradar / Splunk), SOAR, WAF, AV, Firewalls, Internet-facing services).
• Proven experience in cybersecurity incident response, including hands-on experience with incident detection, analysis, and response.
• Experience conducting technical analysis of security events including Malware analysis, incident triage, escalation, communication, and digital forensics.
• Excellent analytical and problem-solving skills, with the ability to think critically and make decisions under pressure.
• Effective communication skills, both verbal and written, can convey technical information to non-technical stakeholders.
• Familiarity with scripting for automation.
• Strong expertise in gathering and condensing threat intelligence into actionable and meaningful communication materials.
• Bachelor's degree in information security or information technology or computer science or related fields.
• Experience in public cloud infrastructure such as Microsoft Azure, GCP, AWS.
• Familiarity with security frameworks and regulatory requirements such as NIST, ISO 27001/2.
• Proven experience with products dealing with vulnerability management services which include Tenable, Qualys, Nexpose, etc.
• Demonstrated understanding of information security concepts, standards, practices, including but not limited to firewalls, intrusion prevention and detection, TCP/IP and related protocols, device monitoring and log management and event monitoring/reporting.
• Certifications such as CISM, CEH, GCIA, GCIH, CISSP or equivalent.
• People Management experience is a plus.
• Results focused and attention to detail

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here:

Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

Job description:

Job Title: Security Operations Center (SOC) Analyst

Location: Gulberg, Lahore (On-Site Role)

Experience: 2 to 3 Years

Responsibilities:

Tech Bridge Consultancy seeks experience in security monitoring solutions, incident response and other cybersecurity tools and technologies implementation capabilities. In your role, your duties will include the following:

• SOC monitoring coverage for any of the following shifts: 
  EST Time 8:00am – 4:00pm (PST 5:00pm – 1:00am), 4:00pm – 12:00am (PST 1:00am – 9:00am), 12:00am – 8:00am (PST 9:00am – 5:00pm)
  ; the work week is considered a minimum of 40 hours each week. Day to day security logging and monitoring solutions; identifying false positives and detecting potential or real threats
• In-depth analysis of security events, alerts and incidents
• Promptly responding to customer enquiries via emails and/or phone calls; responding to security incidents and threats
• Analyzing logs, network traffic and data to identify potential threats and vulnerabilities
• Development security dashboards and reporting; compile threat intelligence reports and manage log data
• Configuration of security tools and technologies (e.g. SIEM, EDR, VM, etc.)
• Configuration of network and security appliances (e.g. Firewalls, routers, switches, HIDS, NIDS, etc.)
• Endpoint security configuration (Defender, CrowdStrike, SentinelOne, Webroot, Kaspersky, etc.)
• Firewall rules configuration and optimization
• SIEM rules configuration (Sentinel, Splunk, LogRhythm, etc.)
• Technical writing and security policy development
• Staying current on industry trends, keeping up-to-date with relevant CVE's and the evolving threat landscape
• Conducting vulnerability scans of network and applications
• Keeping company systems up-to-date with current security patches
• Recommending security improvements to line managers or senior management

Requirements:

• Strong understanding of cybersecurity principles and the SOC environment
• Bachelor's degree in cyber security, computer sciences or equivalent
• Good understanding of vulnerability management tools and techniques
• Good understanding of Windows, Linux and macOS operating systems and endpoints
• Knowledge of modern problem-solving skills, and keen attention to detail
• Good understanding of the modern security in SDLC practices
• Capable of Balancing multiple priorities and remaining flexible in a changing environment
• Good communication and interpersonal skills
• Familiarity with regulatory compliance and security standards (ISO27001, SOC 2 TYPE 1 and TYPE 2, NERC CIP, IE 62443, NIST CSF, etc.)

Other duties may include:

· Contribute to the preparation of technical documentation, including proposals, tenders, RFPs (Requests for Proposals), and RFIs (Requests for Information)

· Participate in business development activities directly related to the sale of cybersecurity services and other tasks supporting the delivery of cybersecurity products and services

· Personnel are required to work on-site; remote or hybrid work options will not be available

· Personnel must strictly use company-provided computer assets, hardware, and licensed software to perform all assigned services

· Personnel must not work more than 12 consecutive hours per shift

· Personnel are required to adhere to internal cybersecurity and IT policies and standards

• · Personnel are required to strictly uphold confidentiality and integrity clauses while dealing with all customer data

Who We Are:

We are a privately owned leading Managed IT Services company (Managed Service Provider). Since 1997 we have specialized in providing managed IT services and managed security services for our clients. which are made up of small to medium-sized enterprises. We are looking for highly passionate individuals to join our team to help and drive the growth and success of our company.

Job Description:

ICE Consulting is seeking a talented Security Operations Center (SOC) Engineer to join our Team. The Security Operations Center Engineer role requires the individual to work as part of the Security Operations Center (SOC) team and help in monitoring and analyzing the environment, identifying, and responding to security threats that put the company at risk. The engineer will own leading-edge solution/s that are intended to improve the security posture of the company. With his domain expertise, the engineer is expected to provide thought leadership and provide sound technical mentorship on how to respond and analyze to security incidents based on security best practices.

Essential Responsibilities:

• Developing and implementing SIEM solution internally and as well for clients and/or candidates who have strong experience in assessing and implementing SIEM and other operational tools and processes for a Security Operations Centre (SOC)
• Develop content for a complex and growing SIEM infrastructure. This includes use cases, dashboards, active channels, reports, rules, filters, trends and active lab sessions.
• Use SIEM in the daily operational work which includes but not limited to Administer, operate, manage SIEM platform and regular activities of ensuring the health of log sources, parsers, alerts, reports etc. and enduring that the platform is operating as planned.
• Monitor SIEM and other event sources, assess, prioritize, escalate and manage security alerts.
• Perform analysis of security, network database and application logs, correlate events and activities to create threat scenarios in order to get ahead of threat actors and reduce the exposure.
• Lead the imminent threat/zero-day response function across the environment.
• Translate threat intelligence into actionable security across tools such as firewall, IPS and malware detection across multiple security vendor platforms.
• Track and resolve security incidents on regular frequencies and collaborate with other teams for resolution and suggest areas for improvement.
• Must have some experience building custom connectors/parsers etc. to point devices or IT assets that are not supported out of the box.
• Own and operate most important security solutions designed to protect the company from cyber threats and attacks.
• Lead in deploying new solutions and technologies to improve the security posture of the company.
• Continuous fine-tuning of our security solutions to reduce the occurrence of false positive and false negative alerts.
• Working knowledge and experience with the MITRE framework for cyber adversary tactics and techniques

Must have working knowledge of any SIEM solution like QRadar, Sentinel, Splunk, Logrythm or Open Source SIEM (Wazuh, ELK)

Requirements

The ideal candidate will have

• Should have deep technical knowledge of the following:
• System security and SIEM implementation experience
• In-depth experience and understanding of Security Event Management – both from a technology/tool as well as process perspective.
• Demonstrated knowledge of TCP/IP networking and major protocols such as: HTTP, SSL/TLS, DNS, SMTP
• Demonstrated experience and expertise with several of the following technology competencies with SIEM, vulnerability scanning tools (Nexpose, Metaspolit), File Integrity Monitoring, and Data Loss Protection etc.
• Development of security scripts in PowerShell or Python for areas such as: automated detection and scanning capabilities
• Network stream analysis using PCAP data and packet reconstruction.
• Experience executing on a defined Incident Response Frameworks and Handling Procedures such as NIST, SANS.
• Current knowledge of security threats, solutions, security tools and network technologies
• An understanding or proficiency in information security and compliance regulations (ISO 27001, PCI DSS, GDPR)
• Keen ability to diagnose and troubleshoot technical issues, excellent problem-solving skills.
• Fluency in English, written and spoken is a must.
• Excellent documentation skills
• Must be able to work independently and also a team player.
• You may be required to travel on a need basis.

Education & Qualifications

• 2 to 5 years of professional experience
• Bachelor's Degree in an IT related discipline
• In lieu of certifications, at least 2 years of information security, auditing or risk management experience

Job Title: Cybersecurity Analyst

Location: Gulberg, Lahore (On-Site Role)

Experience: 2 to 3 Years

Responsibilities:

Tech Bridge Consultancy seeks experience in security monitoring solutions, incident response and other cybersecurity tools and technologies implementation capabilities. In your role, your duties will include the following:

• SOC monitoring coverage for any of the following shifts: EST Time 8:00am – 4:00pm (PST 5:00pm – 1:00am), 4:00pm – 12:00am (PST 1:00am – 9:00am), 12:00am – 8:00am (PST 9:00am – 5:00pm); the work week is considered a minimum of 40 hours each week. Day to day security logging and monitoring solutions; identifying false positives and detecting potential or real threats
• In-depth analysis of security events, alerts and incidents
• Promptly responding to customer enquiries via emails and/or phone calls; responding to security incidents and threats
• Analyzing logs, network traffic and data to identify potential threats and vulnerabilities
• Development security dashboards and reporting; compile threat intelligence reports and manage log data
• Configuration of security tools and technologies (e.g. SIEM, EDR, VM, etc.)
• Configuration of network and security appliances (e.g. Firewalls, routers, switches, HIDS, NIDS, etc.)
• Endpoint security configuration (Defender, CrowdStrike, SentinelOne, Webroot, Kaspersky, etc.)
• Firewall rules configuration and optimization
• SIEM rules configuration (Sentinel, Splunk, LogRhythm, etc.)
• Technical writing and security policy development
• Staying current on industry trends, keeping up-to-date with relevant CVE's and the evolving threat landscape
• Conducting vulnerability scans of network and applications
• Keeping company systems up-to-date with current security patches
• Recommending security improvements to line managers or senior management

Requirements:

• Strong understanding of cybersecurity principles and the SOC environment
• Bachelor's degree in cyber security, computer sciences or equivalent
• Good understanding of vulnerability management tools and techniques
• Good understanding of Windows, Linux and macOS operating systems and endpoints
• Knowledge of modern problem-solving skills, and keen attention to detail
• Good understanding of the modern security in SDLC practices
• Capable of Balancing multiple priorities and remaining flexible in a changing environment
• Good communication and interpersonal skills
• Familiarity with regulatory compliance and security standards (ISO27001, SOC 2 TYPE 1 and TYPE 2, NERC CIP, IE 62443, NIST CSF, etc.)

Other duties may include:

· Contribute to the preparation of technical documentation, including proposals, tenders, RFPs (Requests for Proposals), and RFIs (Requests for Information)

· Participate in business development activities directly related to the sale of cybersecurity services and other tasks supporting the delivery of cybersecurity products and services

· Personnel are required to work on-site; remote or hybrid work options will not be available

· Personnel must strictly use company-provided computer assets, hardware, and licensed software to perform all assigned services

· Personnel must not work more than 12 consecutive hours per shift

· Personnel are required to adhere to internal cybersecurity and IT policies and standards

· Personnel are required to strictly uphold confidentiality and integrity clauses while dealing with all customer data

Job Type: Full-time

Ability to commute/relocate:

• Lahore: Reliably commute or planning to relocate before starting work (Required)

Application Question(s):

• Are you comfortable with an on-site role, as this position is not remote or hybrid?
• Have you worked with vulnerability management tools?
• Are you familiar with any security compliance standards like ISO 27001, SOC 2, or NIST?
• Are you comfortable working onsite in any of the following SOC shift timings?
• Do you have experience working in a SOC (Security Operations Center)?

Language:

• English (Required)

Work Location: In person

Grade: L1

Location: Islamabad

Last date to apply: 2 September 2025

What is Specialist Cyber Security Operations?

We are seeking a motivated PAM Engineer for a client with 1-2 year of experience in Privileged Access Management and a solid understanding of Linux, Windows, and basic database systems. The ideal candidate will assist in implementing, managing, and supporting PAM solutions to secure privileged access across the organization's IT infrastructure. You will also contribute to developing and refining PAM best practices.

The role reports directly to the Manager PAM and is part of 10 team members

What does Cyber Security Operations Specialist- PAM operations do?

• PAM, SSO, IDM and VPN solutions administration
• User Management on OS, APP, DB via PAM SSO IDM
• Strive for continuous improvement in processes/workflows
• Perform User and Role based Audits on Telco and IT platforms
• Knowledge of API integrations i.e REST and SOAP
• Manage projects as well as operational tasks 24/7 in on call roster
• Handle L1 and L2 Jazz employees service requests and issues
• Conduct ATPs, VA and Patch update activities
• Vendor co-ordinations and customizations through planned activities

What are we looking for and what does it require to be Specialist Cyber Security Operations?

• PAM solution implementation experience
• Knowledge on Active Directory, Kerberos, LDAP, OAUTH 2.0, OpenID Connect, 2FA
• Provide just-in-time privileged access to Azure AD and Azure resources
• Any vendor experience of integration/rollout with PAM will be a plus
• Provisioning of applications via APIs (REST and SOAP)
• Understanding of various Databases and their clients provisioning via PAM solution
• Network and server hardening understanding for new deployments
• Experience on JIRA/ServiceNow platform workflow design will be an advantage
• VA and Patch management know how, for windows and linux servers
• Ensuring 24/7 ticket support for any access related request or issue
• Knowledge of Network, databases, windows and Linux
• Cyber Security certifications will be a plus
• Perform User administrations of OS, APP, DB
• Analytical and problem-solving skills

As one of the leading employers in the country, Jazz epitomizes the philosophy that each Jazz employee is passionately living a better every day inspired and enabled by visionary leadership, a unique professional culture, a flourishing lifestyle, and continuous learning and development.

Our core values include qualities essential for a positive organizational culture - truthfully guiding entrepreneurial and innovative mindsets, harnessing professional and interpersonal collaboration, and fostering across-the-board customer-obsession.

As one of the largest private sector organizations in Pakistan, our objective is to continue to change the lives of our 75 million customers for the better. This is an opportunity for someone who wants to be part of something transformative, someone who can play a critical role in driving our success. Together, we can empower millions more with the tools necessary to progress in an increasingly digital economy.

Job Summary:

The Cyber Security Associate will play an important role in ensuring the reliability and security of LMKR's network infrastructure. This role emphasizes network monitoring, firewall administration, and device hardening, while also providing exposure to enterprise security operations. The candidate should have a solid grasp of networking fundamentals and security practices, with the ability to support ongoing improvements in LMKR's cybersecurity environment.

Job Description:

• Monitor
  network traffic and device utilization
  to identify anomalies or potential security issues.
• Maintain and analyze logs from
  firewalls, routers, and security tools
  .
• Apply and manage
  security policies and access rules
  on firewalls and network devices.
• Conduct
  system health checks and endpoint protection monitoring
  .
• Support in
  device hardening and network security audits
  (based on CIS/ISO standards).
• Assist in
  incident handling and escalation
  when network or security issues arise.
• Collaborate with NOC, IT, and compliance teams to strengthen overall
  network security posture
  .
• Document
  network events, changes, and security reports
  for internal records.
• Stay updated on
  emerging network security threats and countermeasures

Required Skills:

• Strong understanding of
  networking protocols
  (TCP/IP, DNS, DHCP, HTTP/S, SMTP, SNMP, NetFlow, VPNs).
• Hands-on knowledge of
  firewalls and access control policies
  .
• Experience with
  network monitoring tools
  (NMS, NetFlow, Wireshark, IDS/IPS).
• Familiarity with
  endpoint security solutions
  and basic incident handling.
• Understanding of
  system/device hardening
  practices and
  CIS benchmarks
  .
• Basic knowledge of
  Linux & Windows security administration
  .
• Awareness of
  ISO 27001, NIST, or other security frameworks
  .

Soft Skills:

• Strong analytical and troubleshooting ability.
• Good communication and documentation skills.
• Ability to work with cross-functional teams (NOC, IT, QA).
• Proactive in learning and adapting to new tools and threats.

Experience:

• 1–2 years of networking/security-related experience.

Education/Qualification:

• Bachelor's degree in
  Cyber Security, Computer Science, or IT
  .
• Certifications such as
  CompTIA Security+, CCNA Security, CNSP, or ISO 27001 Associate
  are a plus.

Job Location:

• Islamabad(Onsite)