62 Security Engineer jobs in Pakistan

PURPOSE: We are seeking a motivated and detail-oriented Associate Information Security Engineer to support our security and compliance initiatives. This entry-level role is ideal for recent graduates or early-career professionals with foundational knowledge of networking, network security, and ISO27001 compliance. The successful candidate will contribute to maintaining a secure IT environment by assisting with security reviews, compliance checks, and vulnerability assessments. KEY RESPONSIBILITIES: Support the implementation and maintenance of ISO27001 Information Security compliance requirements. Collaborate with ISMS and IT teams to identify gaps and ensure compliance with security policies and procedures. Perform regular reviews of network monitoring solutions and critical asset monitoring. Conduct periodic security system checks to ensure reliability and effectiveness. Assist in conducting periodic information security awareness sessions for employees. Promote best practices and policies across teams to improve organizational security culture. Assist in responding to security events and incidents under supervision. Perform periodic vulnerability assessments of critical cloud assets and support remediation activities. Work closely with ISMS and IT teams to identify potential weak points in security systems. Provide input and recommendations to strengthen security posture. QUALIFICATIONS, SKILLS, AND EXPERIENCE: Bachelor’s degree in Computer Science, Information Security, or a related field. 0–1 year of experience in information security, networking, or a related domain. Foundational understanding of network security and networking technologies. Basic knowledge of ISO27001 compliance requirements. Proficiency in Microsoft Office tools for reporting and documentation. Strong critical thinking and problem-solving skills. Good communication skills with the ability to work effectively in a team environment. Ability to take initiative, learn quickly, and adapt to new security challenges. A Culture of Belonging:

At our core, we value diversity and inclusion. As an equal opportunity employer, we are dedicated to creating a workplace where every voice is heard, every person is respected, and everyone has the opportunity to succeed.

#J-18808-Ljbffr

Job Description :

We Are Hiring

NETWORK SECURITY ENGINEER

NOVA is a leading ISP and ICT company delivering innovative solutions and services to corporate and residential clients in Pakistan.

We are hiring Network Security Engineers who can detect, defend, and defeat cyber threats.
At NOVA, you’ll work with advanced security tools, protect high-profile networks, and contribute to innovative ICT solutions for corporate & residential clients.

Why Join NOVA?
Work on challenging real-world security threats
Collaborate with expert NOC & development teams
Competitive benefits & growth opportunitie

Job Specification :

Responsibilities:
• Monitor, detect, and respond to DDoS, brute force, malware, and other attacks
• Harden internal systems and infrastructure against threats
• Manage firewall policies (Fortinet, MikroTik) and IPS/IDS systems
• Conduct periodic vulnerability assessments and penetration testing
• Advise on securing customer and internal data across services
• Work closely with the NOC and development team on incident response

Requirements:
• Experience with SIEM tools, packet analysis, and firewall rule tuning
• Deep understanding of network security and Linux server hardening
• Relevant certifications preferred (CEH, CompTIA Security+, etc.)

Positions: 2
Experience: 2+ years in a cybersecurity or SOC role

#J-18808-Ljbffr

We are seeking a skilled Microsoft Defender for Endpoint Specialist to join our team in Islamabad. The ideal candidate will play a key role in deploying and managing Microsoft Defender for Endpoint solutions to ensure robust endpoint security across the organization.

Key Responsibilities

1. Deploy and configure Microsoft Defender for Endpoint solutions across diverse environments.
2. Integrate endpoint security with Active Directory and Microsoft 365 infrastructure.
3. Monitor, analyze, and respond to endpoint security incidents.
4. Optimize endpoint security configurations for performance and protection.
5. Collaborate with IT teams to ensure compliance with security standards and best practices.
6. Document configurations, procedures, and troubleshooting guidelines.

Requirements:

1. Bachelor’s degree in Computer Science, IT, or a related field (mandatory).
2. Proven experience with Active Directory and Microsoft 365 administration .
3. Hands-on experience with deploying and managing Microsoft Defender for Endpoint .
4. Strong understanding of endpoint security concepts and incident response.
5. Excellent troubleshooting and problem-solving skills.
6. Ability to work under tight deadlines and deliver quality results.

Location

We are looking for a Microsoft Defender EDR/XDR Specialist in our Islamabad office. You may apply if you are willing to work in any of the locations and have relevant experience.

What Are We Offering?

1. Health Insurance
2. Provident Fund
3. Compensation Plans
4. Paid Certifications & Training
5. Stars Of the Month Rewards
6. Quarterly Meetups
7. Anniversary & Eid Gifts
8. Employee Loans for Hajj, Umrah and events

#J-18808-Ljbffr

We are looking for an experienced Senior Security Engineer to become part of our growing team. The ideal candidate will be dedicated to safeguarding digital assets, with a strong focus on security best practices. You should be highly collaborative and committed to delivering high-caliber protection, always keeping the needs of our clients at the forefront.

As a Senior Security Engineer specializing in Offensive Security, you'll be responsible for performing pentest activities across various domains, including: conducting in-depth penetration testing for Web & APIs, Mobile Applications, Cloud environments (AWS), and Active Directory.

Required Expertise: Web Application and API Pentest:

• Demonstrated expert-level knowledge of web application functioning, authentication, and authorization mechanisms.
• Proficiency in identifying and understanding code-level vulnerabilities, including OWASP Top 10, and collaborating with development teams for effective remediation.

Mobile Applications:

• Comprehensive understanding of platform-native vulnerabilities and strategies for remediation.
• Understanding in SSL Pinning and root check implementation, including circumvention of these security measures and improvement suggestions.
• Strong familiarity with major AWS services (IAM, EC2, Lambda, S3, RDS, etc.).
• Ability to identify misconfigurations in IAM policies and hands-on experience in initial access, enumeration, privilege escalation, and data exfiltration in cloud environments.
• Articulate knowledge of prevention and remediation strategies for identified cloud vulnerabilities.

Good to Haves:

• Certifications such as OSCP, CRTP, CRTO, CREST CRT are advantageous but not mandatory; emphasis is on practical skills and expertise.
• Hands-on experience in performing Active Directory Assessment and familiarity with CI/CD Pipelines.

#J-18808-Ljbffr

Work with the industry leader

At Eon, our mission is to make patients healthier and healthcare affordable. Eon Patient Management ("EPM") identifies patients with disease risk and streamlines clinical decision analysis so clinicians can work at the top of their licenses. With unique solutions across multiple disease states, we drive unprecedented adherence to care pathways, so that more patients are seen and more survive. When patients win, healthcare systems win - both clinically and financially.

As a market leader in incidental tracking and patient management, Eon is pioneering the use of Artificial Intelligence to enable healthcare enterprises, ranging from small health systems to large, national-scale IDNs. We have a unique and dynamic team that is focused on results, and employment opportunities both local to our Denver office, and remote based.

This really is the perfect role!

The Opportunity:

As an Application Security Engineer, you will be improving Eon's application security posture and keeping the platform secure throughout the Software Development Life Cycle (SDLC)! We are looking for someone who loves to analyze, test and triage application vulnerabilities, participate in code and product security reviews, and help our Developers bake security into their day-to-day workflows and CICD. You will partner closely with our Product and Engineering teams, and external testers, so solid interpersonal skills are a must. This role is a great opportunity to advance an application security program and drive remediation of security weaknesses with an enterprise-wide impact!

In this role you will:

• Be an advocate for application security within the organization
• Help develop and maintain a risk-based application security program based on a well-defined application security framework
• Ensure the platform complies with healthcare-specific security standards such as HIPAA and HITRUST, and follow best practices for handling sensitive patient data.
• Find common patterns and themes within application vulnerabilities and work with Development teams to address the root causes
• Participates in the strategic decisions related to the requirements, design, implementation, and operations of application security framework, processes, and technology
• Execute security-focused code, architecture and integration reviews
• Coordinate or conduct penetration testing and drive remediation efforts to completion
• Collaborate with DevOps teams to integrate security testing tools (SAST/DAST) into CI/CD pipelines to enable DevSecOps practices.
• Keep abreast of the latest security issues and technologies
• Own and improve process and procedural documentation
• Assist with daily activities and functions of the Security team (including alert & incident response) to maintain security posture as well as policy and compliance commitments
  
  

Skills & Requirements:

• Deep knowledge and familiarity with Cybersecurity Framework, including NIST 800-53, NIST CSF, CIS Top 20, MITRE ATT&CK, and OWASP Top Ten
• Deep knowledge of crypto, authentication and authorization protocols and standards, including SSL/TLS, SAML, OAuth, JWT Tokens is a must
• Possess a relentless desire to (ethically) break into things and can communicate the attack scenarios and mitigation options based on standard framework is desired
• Ability to read and understand Java, JavaScript, and Python
• Ability to automate repetitive tasks, using Python or other scripting language, is a plus
• Experience working in regulated industries, with a focus on healthcare security standards (HIPAA, HITRUST) is a plus.
  

Nice-to-have:

• 2+ years of experience in web application penetration testing or a security-focused application development role is a must
• AWS Security, CEH, GWEB, GCIH or equivalent certifications are preferred
• Ability to work in a diverse, fast-paced environment and effectively collaborate across teams
• Outstanding written and oral communication skills with demonstrated ability to clearly articulate to both a technical and functional audience
  

“So what’s in it for me,” you ask?

We pride ourselves for being a culture-based company buzzing with high-energy. Aside from the enthusiastic environment, you'll enjoy:

• Competitive salary
• Health insurance
• Referral bonuses
• Generous vacation time
• Paid Maternity and Paternity leave
• Work from home days
• Lunch facility within office
• Travel allowance
• Company equipment (laptop, internet device, screens etc)
• Professional development and career growth opportunities
• Awesome team members

If we still have your attention, don't delay, send us your resume!

#LI-Onsite

#J-18808-Ljbffr

Job Description : We Are Hiring NETWORK SECURITY ENGINEER NOVA is a leading ISP and ICT company delivering innovative solutions and services to corporate and residential clients in Pakistan. We are hiring Network Security Engineers who can detect, defend, and defeat cyber threats. At NOVA, you’ll work with advanced security tools, protect high-profile networks, and contribute to innovative ICT solutions for corporate & residential clients. Why Join NOVA? Work on challenging real-world security threats Collaborate with expert NOC & development teams Competitive benefits & growth opportunitie Job Specification : Responsibilities: • Monitor, detect, and respond to DDoS, brute force, malware, and other attacks • Harden internal systems and infrastructure against threats • Manage firewall policies (Fortinet, MikroTik) and IPS/IDS systems • Conduct periodic vulnerability assessments and penetration testing • Advise on securing customer and internal data across services • Work closely with the NOC and development team on incident response Requirements: • Experience with SIEM tools, packet analysis, and firewall rule tuning • Deep understanding of network security and Linux server hardening • Relevant certifications preferred (CEH, CompTIA Security+, etc.) Positions: 2 Experience: 2+ years in a cybersecurity or SOC role

#J-18808-Ljbffr

Work with the industry leader At Eon, our mission is to make patients healthier and healthcare affordable. Eon Patient Management ("EPM") identifies patients with disease risk and streamlines clinical decision analysis so clinicians can work at the top of their licenses. With unique solutions across multiple disease states, we drive unprecedented adherence to care pathways, so that more patients are seen and more survive. When patients win, healthcare systems win - both clinically and financially. As a market leader in incidental tracking and patient management, Eon is pioneering the use of Artificial Intelligence to enable healthcare enterprises, ranging from small health systems to large, national-scale IDNs. We have a unique and dynamic team that is focused on results, and employment opportunities both local to our Denver office, and remote based. This really is the perfect role!

The Opportunity: As an Application Security Engineer, you will be improving Eon's application security posture and keeping the platform secure throughout the Software Development Life Cycle (SDLC)! We are looking for someone who loves to analyze, test and triage application vulnerabilities, participate in code and product security reviews, and help our Developers bake security into their day-to-day workflows and CICD. You will partner closely with our Product and Engineering teams, and external testers, so solid interpersonal skills are a must. This role is a great opportunity to advance an application security program and drive remediation of security weaknesses with an enterprise-wide impact! In this role you will: Be an advocate for application security within the organization Help develop and maintain a risk-based application security program based on a well-defined application security framework Ensure the platform complies with healthcare-specific security standards such as HIPAA and HITRUST, and follow best practices for handling sensitive patient data. Find common patterns and themes within application vulnerabilities and work with Development teams to address the root causes Participates in the strategic decisions related to the requirements, design, implementation, and operations of application security framework, processes, and technology Execute security-focused code, architecture and integration reviews Coordinate or conduct penetration testing and drive remediation efforts to completion Collaborate with DevOps teams to integrate security testing tools (SAST/DAST) into CI/CD pipelines to enable DevSecOps practices. Keep abreast of the latest security issues and technologies Own and improve process and procedural documentation Assist with daily activities and functions of the Security team (including alert & incident response) to maintain security posture as well as policy and compliance commitments

Skills & Requirements:

Deep knowledge and familiarity with Cybersecurity Framework, including NIST 800-53, NIST CSF, CIS Top 20, MITRE ATT&CK, and OWASP Top Ten Deep knowledge of crypto, authentication and authorization protocols and standards, including SSL/TLS, SAML, OAuth, JWT Tokens is a must Possess a relentless desire to (ethically) break into things and can communicate the attack scenarios and mitigation options based on standard framework is desired Ability to read and understand Java, JavaScript, and Python Ability to automate repetitive tasks, using Python or other scripting language, is a plus Experience working in regulated industries, with a focus on healthcare security standards (HIPAA, HITRUST) is a plus.

Nice-to-have: 2+ years of experience in web application penetration testing or a security-focused application development role is a must AWS Security, CEH, GWEB, GCIH or equivalent certifications are preferred Ability to work in a diverse, fast-paced environment and effectively collaborate across teams Outstanding written and oral communication skills with demonstrated ability to clearly articulate to both a technical and functional audience

“So what’s in it for me,” you ask?

We pride ourselves for being a culture-based company buzzing with high-energy. Aside from the enthusiastic environment, you'll enjoy: Competitive salary Health insurance Referral bonuses Generous vacation time Paid Maternity and Paternity leave Work from home days Lunch facility within office Travel allowance Company equipment (laptop, internet device, screens etc) Professional development and career growth opportunities Awesome team members

If we still have your attention, don't delay, send us your resume! #LI-Onsite

#J-18808-Ljbffr

We are looking for an experienced Senior Security Engineer to become part of our growing team. The ideal candidate will be dedicated to safeguarding digital assets, with a strong focus on security best practices. You should be highly collaborative and committed to delivering high-caliber protection, always keeping the needs of our clients at the forefront. As a Senior Security Engineer specializing in Offensive Security, you'll be responsible for performing pentest activities across various domains, including: conducting in-depth penetration testing for Web & APIs, Mobile Applications, Cloud environments (AWS), and Active Directory. Required Expertise:

Web Application and API Pentest:

Demonstrated expert-level knowledge of web application functioning, authentication, and authorization mechanisms. Proficiency in identifying and understanding code-level vulnerabilities, including OWASP Top 10, and collaborating with development teams for effective remediation. Mobile Applications:

Comprehensive understanding of platform-native vulnerabilities and strategies for remediation. Understanding in SSL Pinning and root check implementation, including circumvention of these security measures and improvement suggestions. Strong familiarity with major AWS services (IAM, EC2, Lambda, S3, RDS, etc.). Ability to identify misconfigurations in IAM policies and hands-on experience in initial access, enumeration, privilege escalation, and data exfiltration in cloud environments. Articulate knowledge of prevention and remediation strategies for identified cloud vulnerabilities. Good to Haves:

Certifications such as OSCP, CRTP, CRTO, CREST CRT are advantageous but not mandatory; emphasis is on practical skills and expertise. Hands-on experience in performing Active Directory Assessment and familiarity with CI/CD Pipelines.

#J-18808-Ljbffr

We are seeking a skilled

Microsoft Defender for Endpoint Specialist

to join our team in Islamabad. The ideal candidate will play a key role in deploying and managing Microsoft Defender for Endpoint solutions to ensure robust endpoint security across the organization. Key Responsibilities

Deploy and configure

Microsoft Defender for Endpoint

solutions across diverse environments. Integrate endpoint security with

Active Directory

and

Microsoft 365

infrastructure. Monitor, analyze, and respond to endpoint security incidents. Optimize endpoint security configurations for performance and protection. Collaborate with IT teams to ensure compliance with security standards and best practices. Document configurations, procedures, and troubleshooting guidelines. Requirements:

Bachelor’s degree

in Computer Science, IT, or a related field (mandatory). Proven experience with

Active Directory

and

Microsoft 365 administration . Hands-on experience with deploying and managing

Microsoft Defender for Endpoint . Strong understanding of endpoint security concepts and incident response. Excellent troubleshooting and problem-solving skills. Ability to work under tight deadlines and deliver quality results. Location

We are looking for a Microsoft Defender EDR/XDR Specialist in our Islamabad office. You may apply if you are willing to work in any of the locations and have relevant experience. What Are We Offering?

Health Insurance Provident Fund Compensation Plans Paid Certifications & Training Stars Of the Month Rewards Quarterly Meetups Anniversary & Eid Gifts Employee Loans for Hajj, Umrah and events

#J-18808-Ljbffr