31 Security Implementation jobs in Pakistan

About Contour

Contour Software

has grown from a dozen people to over 2,000 staff across 3 cities, in less than 14 years.

As a subsidiary of Constellation Software Inc., we are proud to be part of a global enterprise software conglomerate that has grown to become one of the top 10 software companies in the world, with employees and customers in 100+ countries. With a broad-based and ever-growing portfolio of market-leading, vertical-market enterprise solutions covering more than 100 industry domains in predominantly mature markets, CSI's recipe creates the perfect environment for professionals to build fulfilling, long-term careers.

What started as an R&D & Accounting back-office, has progressed into a full-service Global Centre serving all functions and departments, at the divisional as well as operating group/corporate level. Today Contour employees, located in Karachi, Lahore & Islamabad, are serving CSI divisions located in time zones spanning the globe, from Sydney to Vancouver. With the global growth of Constellation as the wind in our sails, we are only just getting started

About the Role:

Constellation Payment

Processing is a modern Payment Facilitator (PayFac) empowering SaaS businesses to grow revenue through seamless, embedded payments. As part of Constellation Software Inc. (TSE:CSU) — a global Canadian-based software leader at a $96B market cap and the 7th largest software company in the world — we combine the agility of a specialized payments company with the strength and stability of an established global powerhouse.

We're building a cloud-native PayFac platform on AWS: microservices (DDD) across TypeScript/JavaScript, Java, and Ruby, with a ReactJS front end. As our Security Engineer, you'll co-own the DevSecOps program—driving continuous security automation, compliance automation, and penetration testing. You'll design and orchestrate SAST/SCA/DAST across our services, champion remediation practices, and partner closely with our compliance team to translate control objectives into repeatable, automated evidence.

Our customers are ISV vendors who embed payments by integrating with our APIs, SDKs, and webhooks. That means security and compliance aren't afterthoughts—they're product features. You'll ensure our developer-facing surface area is secure by default: establishing standards for authentication and authorization (OIDC/OAuth2/JWT, mTLS/JWS for webhooks), key and secret management, request signing, idempotency, rate-limiting/abuse controls, and secure data handling that minimizes PCI scope for ISVs (tokenization, hosted fields/iframes, PAN vault boundaries, network tokens). You'll create secure integration patterns (reference apps, checklists, threat models/DFDs) so partners can implement quickly without compromising controls.

Because we operate a multi-tenant PayFac, you'll harden isolation boundaries (network, identity, and data), lead supply-chain security (SBOMs, signing/provenance, gated deployments), and build continuous evidence for PCI DSS 4.0 (and SOC 2/ISO as needed). You'll collaborate with partner security and compliance teams on due-diligence requests (SIG Lite, AOC/ROCs, shared-responsibility matrices), and you'll own pre-launch security reviews for new ISV integrations. You'll also help run incident response drills and define partner-facing comms and SLAs for security events.

Finally, you'll research and implement AI-assisted security (triage, anomaly detection, auto-remediation PRs) with appropriate guardrails, and own KPIs that demonstrate multiplier effects—e.g., reduced MTTR, lower false-positive rates, higher auto-triage coverage, and faster time-to-evidence—so our platform's security posture continuously improves as our ISV ecosystem scales.

What You'll Do:

Own Security Automation:

• Design, implement, and run the CI/CD security toolchain: SAST, SCA, DAST, container and IaC scanning, secrets detection, SBOM generation, and policy-as-code.
• Integrate scanners into GitHub/GitHub Actions pipelines with PR gates, and auto-ticketing to JIRA; tune noise, baselines, and break-glass rules.
• Establish vulnerability management SLAs, risk acceptance workflow, and metrics dashboards (e.g., MTTR, vuln burn-down).

Embed Security in the SDLC:

• Create lightweight secure-coding standards and review checklists for TypeScript/Node, Java, Ruby, React.
• Run threat modeling (STRIDE/PASTA) and produce DFDs (L0–L2) for new and high-risk flows.
• Lead a "security champions" program with engineering squads.

Platform & Cloud Security (AWS/EKS):

• Harden EKS workloads (admission controls, pod security, image signing, runtime protection), ECR scanning, and supply-chain security.
• Implement and iterate on IAM least-privilege, KMS/CloudHSM key management, network segmentation, WAF/Shield, CloudFront, GuardDuty/Security Hub, and centralized logging.
• Validate service-to-service auth (mTLS, OIDC, JWT), secrets management (AWS Secrets Manager/SSM), and data protection at rest/in transit (FIPSvalidated crypto).
• Manage security certificate adoption our own and 3rd party across the company technology stack

Compliance Automation:

• Map controls and automate evidence for PCI DSS 4.0 (and SOC 2/ISO 27001 as needed): continuous monitoring, detector-to-control mappings, and audit-ready artifacts.
• Partner with compliance on policies, risk register, third-party/vendor assessments, and control testing cadence.

Penetration Testing & Response:

• Scope and coordinate internal and third-party penetration tests (API, web, mobile, cloud); plan fix-verification and retests.
• Contribute to incident response playbooks, tabletop exercises, and forensics runbooks.
• Participate in incident response events and be a key contributor on improving security posture

Research & implement AI security tools:

• Evaluate and deploy AI/ML capabilities (LLM-assisted code reviews, AI triage for SAST/SCA/DAST, anomaly detection over logs/telemetry, drift detection) to reduce toil and increase signal quality—without leaking sensitive code or data.

Own outcomes & KPIs:

• Define baselines, instrument dashboards, and continuously tune models/policies to demonstrably improve detection efficacy, remediation speed, and compliance evidence quality.

Guardrails & governance:

• Establish safe-use patterns (PII redaction, repository allowlists, prompt/content controls, human-in-the-loop), document model/feature risks, and keep audit trails that map to PCI DSS 4.0 controls.

Automation & SOAR integration:

• Orchestrate AI-assisted enrichment and response (e.g., auto-labeling, deduplication, prioritization, suggested fixes/PRs) across CI/CD, SIEM, ticketing, and chat.

KPIs You'll Own:

• MTTR for high-severity vulns/incidents: 40–60% vs. baseline within 2–3 quarters.
• Alert noise reduction (precision/FP rate): 50% reduction in false positives on gated scans and detections.
• Auto-triage coverage: 70% of scanner findings enriched and prioritized by AI with reviewer acceptance 90%.
• AI-generated remediation PRs: 30% of low/medium issues fixed via assisted PRs passing CI policy.
• Time-to-evidence (PCI 4.0 controls): 50% for recurring audits via automated control artifacts.
• Signed-off service coverage: 90% of services covered by AI-backed detections and scan triage.

What You'll Bring:

• 8–10 years in application/cloud security or DevSecOps for high-availability platforms (fintech/payments ideal).
• Hands-on DevSecOps program administration experience with Veracode.
• Fluent in Terraform for the AWS Stack
• Strong CI/CD experience (GitHub Actions preferred) and automation in Python/TypeScript/Bash.
• Solid AWS security fundamentals: IAM, KMS, CloudTrail, Config, Security Hub, GuardDuty, VPC/LBs, WAF/Shield; Kubernetes/EKS hardening experience.
• Familiarity with microservices, event-driven systems, and DDD; ability to read code in TypeScript/Java/Ruby and basic ReactJS patterns.
• Working knowledge of PCI DSS 4.0 control objectives (tokenization/PAN handling, key management, segmentation, logging/retention), plus SOC 2/ISO 27001 concepts.
• Clear communication with engineers and non-technical stakeholders; bias to automate and simplify.
• Bonus Point: Payments domain exposure: EMV/3DS, PAN vaulting, network tokenization, P2PE, dispute/chargeback flows.

How We'll Measure Success:

• 90 days: Security scans embedded in CI for core services with actionable findings; baseline metrics and SLAs defined; initial PCI 4.0 control mappings complete.
• 6 months: False-positive rate <10% on gating scans; P1/P2 MTTR within SLA; SBOMs & dependency policies enforced; security champions running.
• 12 months: Compliance evidence automation covers priority controls; successful third-party penetration test with timely remediation; measurable reduction in highrisk vulns and misconfigurations.

Team & Reporting:

This role sits in the CTO organization (Engineering/Platform) and partners daily with compliance, DevOps/SRE, Backend/Frontend teams, and Product.

Our Stack (you don't need all of these):

AWS (EKS, ECR, KMS, CloudHSM, WAF/Shield, CloudFront, GuardDuty, Security Hub,

CloudWatch), GitHub/GitHub Actions, Terraform, Node/TypeScript, Java, Ruby, React,

Kafka, MongoDB, Postgres, Redis, Veracode, OWASP ZAP/Burp, AI Tools in Microsoft Teams, JIRA, Development IDEs (Amazon Q, Cursor, Claude Code)

Exciting Benefits we offer:

• Market-leading Salary
• Medical Coverage – Self & Dependents
• Parents Medical Coverage
• Provident Fund
• Employee Performance-based bonuses
• Home Internet Subsidy
• Conveyance Allowance
• Profit Sharing Plan (Tenured Employees Only)
• Life Benefit
• Child Care Facility
• Company Provided Lunch/Dinner
• Professional Development Budget
• Recreational area for in-house games
• Sporadic On-shore training opportunities
• Friendly work environment
• Leave Encashment

Disclaimer: At Contour, we attribute our success to the unique contributions of our diverse staff. We're committed to fostering a culture of respect that thrives on the varied perspectives and experiences of all individuals we recruit, employ, promote, and compensate. Since day one, we've adhered to a policy that champions a work environment honoring the worth and dignity of each person while being free from all forms of employment discrimination.

In our continuous effort to promote inclusivity, we extend our commitment to individuals with special needs by providing reasonable accommodations. We actively encourage qualified individuals with special needs to apply for the various openings within our company. Should you require assistance in completing the application process or have any inquiries regarding special facilities, please do not hesitate to contact our HR team. Your unique talents and abilities are welcomed and valued here.

About Mobiz
Mobiz is an information technology firm, and we do three things exceptionally well: cloud and network automation, digital transformation, and data protection. Double-digit growth year-over-year has driven us to grow our team and ensure we stay ahead of the curve.

What Can You Expect?

Every day at Mobiz, we work with a deep sense of purpose. We continuously innovate. Our mission is to empower our clients to do more through transformation. You'll work in a collaborative environment alongside highly talented people that improve client operations and exceed expectations. We strive to simplify technology challenges, and no less.

Who Are We Looking For?

We are seeking a highly skilled Security Engineer with 3–5 years of hands-on experience designing and deploying enterprise security solutions across Microsoft Azure and Microsoft 365.

The ideal candidate will possess strong proficiency in implementing security controls that align with leading frameworks such as NIST, CIS, and ISO/IEC 27001, while demonstrating expertise in applying Microsoft's Azure Security Benchmark (ASB) to real-world customer environments.

The Security Engineer will take ownership of ground-level security execution, ensuring that customer environments are not only technically hardened but also fully aligned with compliance and governance best practices. This role requires a blend of hands-on technical capability and a deep understanding of how security frameworks translate into operational guardrails within Azure and Microsoft 365.

Key Responsibilities

• Must have deployed and configured security solutions in Azure, including Microsoft Defender for Cloud, Identity Protection, Privileged Identity Management (PIM), and Conditional Access policies.
• Must Have Implemented and managed Microsoft 365 security features such as Defender for Microsoft 365, Defender for Identity, and Defender for Endpoint, XDR,.
• Must have configured and operationalized Microsoft Sentinel, including rule creation, incident response playbooks, and security automation.
• Good to have support Microsoft Purview deployments including sensitivity labels, Data Loss Prevention (DLP), Insider Risk, and eDiscovery (good to have).
• Must Have Conduct security hardening of Azure and Microsoft 365 environments, aligning with Zero Trust principles and industry frameworks.
• Must have performed security monitoring, log analysis, and incident response across Azure and M365 platforms.
• Collaborate with architects and senior security leaders to execute customer-facing engagements and deliver high-quality technical outcomes.
• Document security designs, configurations, and remediation actions for both internal and external stakeholders.

Required Qualifications

• 3–5 years of professional experience in Microsoft cloud security engineering roles.
• Proven hands-on experience deploying and managing Azure and M365 security solutions.
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) – mandatory.
• One of the following certification (SC-200, SC-300, or SC-400) – mandatory.
• Experience with Microsoft Purview Information Protection and compliance solutions – preferred.
• Strong working knowledge of Zero Trust, cloud governance, and regulatory compliance frameworks (ISO, NIST, CIS, etc.)
• Excellent problem-solving skills, attention to detail, and ability to work in a fast-paced consulting environment.

What We Offer

• A team of bright, hard-working, and innovative people that will contribute to your growth.
• Competitive Salary and comprehensive benefits plan.
• A dynamic and collaborative work environment with opportunity to work with cutting-edge technology and innovative solutions.

Other
This is a full-time office-based job in Karachi, Pakistan.

Closing

Mobiz embraces diversity and is committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better we are. We are an equal opportunity employer.

We thank all applicants for their interest. We will contact you if you are selected to move forward in the recruiting process.

About Mobiz

Mobiz is an information technology firm, and we do three things exceptionally well: cloud and network automation, digital transformation, and data protection. Double-digit growth year-over-year has driven us to grow our team and ensure we stay ahead of the curve.

What Can You Expect?

Every day at Mobiz, we work with a deep sense of purpose. We continuously innovate. Our mission is to empower our clients to do more through transformation. You'll work in a collaborative environment alongside highly talented people that improve client operations and exceed expectations. We strive to simplify technology challenges, and no less.

Who Are We Looking For?

We are seeking a highly skilled Security Engineer with 3–5 years of hands-on experience designing and deploying enterprise security solutions across Microsoft Azure and Microsoft 365.

The ideal candidate will possess strong proficiency in implementing security controls that align with leading frameworks such as NIST, CIS, and ISO/IEC 27001, while demonstrating expertise in applying Microsoft's Azure Security Benchmark (ASB) to real-world customer environments.

The Security Engineer will take ownership of ground-level security execution, ensuring that customer environments are not only technically hardened but also fully aligned with compliance and governance best practices. This role requires a blend of hands-on technical capability and a deep understanding of how security frameworks translate into operational guardrails within Azure and Microsoft 365.

Key Responsibilities

• Must have deployed and configured security solutions in Azure, including Microsoft Defender for Cloud, Identity Protection, Privileged Identity Management (PIM), and Conditional Access policies.
• Must Have Implemented and managed Microsoft 365 security features such as Defender for Microsoft 365, Defender for Identity, and Defender for Endpoint, XDR,.
• Must have configured and operationalized Microsoft Sentinel, including rule creation, incident response playbooks, and security automation.
• Good to have support Microsoft Purview deployments including sensitivity labels, Data Loss Prevention (DLP), Insider Risk, and eDiscovery (good to have).
• Must Have Conduct security hardening of Azure and Microsoft 365 environments, aligning with Zero Trust principles and industry frameworks.
• Must have performed security monitoring, log analysis, and incident response across Azure and M365 platforms.
• Collaborate with architects and senior security leaders to execute customer-facing engagements and deliver high-quality technical outcomes.
• Document security designs, configurations, and remediation actions for both internal and external stakeholders.

Required Qualifications

• 3–5 years of professional experience in Microsoft cloud security engineering roles.
• Proven hands-on experience deploying and managing Azure and M365 security solutions.
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) – mandatory.
• One of the following certification (SC-200, SC-300, or SC-400) – mandatory.
• Experience with Microsoft Purview Information Protection and compliance solutions – preferred.
• Strong working knowledge of Zero Trust, cloud governance, and regulatory compliance frameworks (ISO, NIST, CIS, etc.)
• Excellent problem-solving skills, attention to detail, and ability to work in a fast-paced consulting environment.

What We Offer

• A team of bright, hard-working, and innovative people that will contribute to your growth.
• Competitive Salary and comprehensive benefits plan.
• A dynamic and collaborative work environment with opportunity to work with cutting-edge technology and innovative solutions.

Other

This is a full-time office-based job in Karachi, Pakistan.

Closing

Mobiz embraces diversity and is committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better we are. We are an equal opportunity employer.

We thank all applicants for their interest. We will contact you if you are selected to move forward in the recruiting process.

We're Hiring: Security Engineer

Our
US Client
needs a
Security Engineer
who can help him build secure, resilient, and scalable technology solutions.

What You'll Do:

• Design, implement, and monitor security solutions across applications, networks, and cloud environments
• Conduct security assessments, penetration testing, and risk analysis
• Respond to incidents and develop proactive prevention strategies
• Collaborate with developers, DevOps, and IT teams to integrate security best practices
• Ensure compliance with industry standards (ISO, SOC 2, GDPR, etc.)

What We're Looking For:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
• Proven experience as a Security Engineer, Cybersecurity Analyst, or similar role
• Strong understanding of network, cloud, and application security principles
• Hands-on experience with security tools (SIEM, IDS/IPS, firewalls, endpoint protection, vulnerability scanners)
• Knowledge of threat modeling, penetration testing, and incident response
• Familiarity with compliance frameworks (ISO 27001, SOC 2, GDPR, HIPAA, etc.)
• Scripting/programming skills in Python, Bash, or PowerShell
• Excellent problem-solving, analytical, and communication skills
• Relevant certifications (e.g., CISSP, CEH, OSCP, CompTIA Security+) preferred

Why Join Us?

• Opportunity to shape and strengthen our security infrastructure
• Work with cutting-edge technologies and innovative teams
• Competitive salary, growth opportunities, and flexible work culture

Interested? Apply now at or share with someone in your network who'd be a great fit

About the Role

We are seeking a skilled and proactive Security Engineer to strengthen our organization's cyber defense posture. The ideal candidate will be responsible for designing, implementing, and maintaining robust security systems that safeguard our infrastructure, data, and applications against internal and external threats. This role requires a mix of technical expertise, strategic thinking, and hands-on experience in security architecture and operations.

Key Responsibilities

• Develop, execute, and track the performance of security measures to protect information systems, networks, and infrastructure.
• Design and engineer comprehensive cybersecurity architecture, including network, endpoint, and cloud security.
• Identify, define, and document system security requirements, vulnerabilities, and risks; recommend appropriate solutions and mitigation plans.
• Configure, troubleshoot, and maintain security infrastructure software and hardware (e.g., firewalls, IDS/IPS, endpoint protection, SIEM).
• Implement and manage systems that monitor networks and applications for security breaches, intrusions, and abnormal activity.
• Conduct regular vulnerability assessments, penetration tests, and security audits to identify gaps and ensure compliance.
• Collaborate with IT, DevOps, and software engineering teams to embed security best practices throughout the SDLC.
• Develop and maintain incident response plans, ensuring readiness to respond effectively to security incidents.
• Educate and train employees on cybersecurity awareness, safe practices, and corporate security policies.
• Stay current with emerging security threats, vulnerabilities, and industry trends, and apply this knowledge to strengthen the company's defenses.

What You'll Do Day-to-Day

Security Engineers play a vital role as the first line of defense against cyber threats. You'll assess existing systems for weaknesses, implement preventive and corrective measures, and ensure that our security infrastructure evolves in line with organizational growth. This position involves hands-on monitoring, system design, and cross-functional collaboration to ensure the continuous integrity and confidentiality of company data.

Skills and Qualifications

• Education: Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Experience: 3–5+ years of experience in system or network security engineering, or a related position.
• Proven track record of designing, operating, and maintaining security systems.
• Strong understanding of networking technologies, protocols, and security architectures (TCP/IP, VPNs, DNS, firewalls, etc.).
• Proficiency in security tools and systems including SIEM, IDS/IPS, endpoint protection, anti-virus, and authentication systems.
• Expertise in operating system and database security across Windows, Linux, and cloud environments (AWS, Azure, GCP).
• Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST.
• Experience with scripting or automation (Python, Bash, PowerShell) for security monitoring and incident response is a plus.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and documentation abilities, especially when collaborating with technical and non-technical teams.

We are looking for an experienced Senior Network and Security Engineer to be the lead on networking projects as part of a close-knit, high-performing team. An industry solutions professional who wants to work in a collaborative environment.

Job Responsibilities

• Collaborating with network architects, project managers and engineers to design and implement functional company networks.
• Design, build, implement, document, and manage a full landscape of resilient and secure networking components such as Routers, Firewalls, Switches, wireless equipment, and load balancers for environments ranging from small remote client locations to Data Centers and the cloud.
• Leverage observability tools to build and enhance monitoring, alerting, and config backups across the network topology.
• Quickly diagnose and troubleshoot a wide range of network issues, from end-host connectivity to traffic flows, with root cause analysis for reporting and the goal of future improvements.
• Manage Incident/Tickets, Change/Configuration Management/Problem management.
• Helped other engineers in resolving technical issues and guide them from a technical perspective.
• Act as an escalation point for break/fix issue resolution.
• Constantly innovating and improving our infrastructure and processes.
• Participate in on-call rotation as needed and address critical issues during off hours as needed.
• Work onsite/remote at client locations as needed.

What We're Looking For

• 8+ years of networking and systems experience supporting a wide variety of network technology and platforms, designing, and implementing complete network infrastructure, as well as integrating partial upgrades in a variety of environments, from network infrastructure to copper and fiber cabling, to configurations with the goal of having a system that is highly reliable and simple to manage.
• Proven and demonstrable knowledge of networking technologies and communication protocols (Routing (RIP/OSPF/EIGRP/BGP), Switching L2/L3, spanning tree/portfast, Wi-Fi, VLANs, iSCSI, VPN, DNS, DHCP).
• Must have strong experience in Palo Alto and Cisco ASA. Must know in-depth on APP-IDs, Content IDs, URL filtering, site to site VPNs and using Panorama/FTD for management. Must have wildfire deployment experience.
• Automation experience/Cisco ACI is a strong plus.
• Knowledge in PRISMA, NSX-T, DNAC is a huge plus.
• Experience with Cisco ISE deployments is a huge plus.
• Must have strong experience in Cisco Viptela deployment.
• Experience in design and implementation of the majority of the following:
• Firewalls, DNS, IDS/IPS, WAF, anti-virus, content filtering, data loss prevention, endpoint security, email security, network vulnerability scanning, incident management
• Excellent communication skills, creative problem solving, and strong passion is a must.
• Strong technical curiosity, security-minded, and a "let's figure it out" attitude.
• Knowledge of infrastructure monitoring platforms and protocols
• Knowledge of managing Digital Certificates, public DNS, private DNS.
• Experience with network traffic analysis using tools like Wireshark.
• Knowledge of managing Digital Certificates, public DNS, private DNS.
• Experience with network observability, management, and monitoring tools like PRTG, Auvik, SolarWinds, etc.

What Will Set You Apart

• Experience supporting various networking and firewall equipment ranging from SOHO to SMB to enterprise platforms.
• Energized and experienced with an agile environment where continuous delivery is practiced.
• Prior experience supporting projects.
• Prior experience in the MSP Industry.

Work with the industry leader

At Eon, our mission is to make patients healthier and healthcare affordable. Eon Patient Management ("EPM") identifies patients with disease risk and streamlines clinical decision analysis so clinicians can work at the top of their licenses. With unique solutions across multiple disease states, we drive unprecedented adherence to care pathways, so that more patients are seen and more survive. When patients win, healthcare systems win - both clinically and financially.

As a market leader in incidental tracking and patient management, Eon is pioneering the use of Artificial Intelligence to enable healthcare enterprises, ranging from small health systems to large, national-scale IDNs. We have a unique and dynamic team that is focused on results, and employment opportunities both local to our Denver office, and remote based.

This really is the perfect role

The Opportunity
As an Application Security Engineer, you will be improving Eon's application security posture and keeping the platform secure throughout the Software Development Life Cycle (SDLC) We are looking for someone who loves to analyze, test and triage application vulnerabilities, participate in code and product security reviews, and help our Developers bake security into their day-to-day workflows and CICD. You will partner closely with our Product and Engineering teams, and external testers, so solid interpersonal skills are a must. This role is a great opportunity to advance an application security program and drive remediation of security weaknesses with an enterprise-wide impact

In This Role You Will

• Be an advocate for application security within the organization
• Help develop and maintain a risk-based application security program based on a well-defined application security framework
• Ensure the platform complies with healthcare-specific security standards such as HIPAA and HITRUST, and follow best practices for handling sensitive patient data.
• Find common patterns and themes within application vulnerabilities and work with Development teams to address the root causes
• Participates in the strategic decisions related to the requirements, design, implementation, and operations of application security framework, processes, and technology
• Execute security-focused code, architecture and integration reviews
• Coordinate or conduct penetration testing and drive remediation efforts to completion
• Collaborate with DevOps teams to integrate security testing tools (SAST/DAST) into CI/CD pipelines to enable DevSecOps practices.
• Keep abreast of the latest security issues and technologies
• Own and improve process and procedural documentation
• Assist with daily activities and functions of the Security team (including alert & incident response) to maintain security posture as well as policy and compliance commitments

Skills & Requirements

• Deep knowledge and familiarity with Cybersecurity Framework, including NIST 800-53, NIST CSF, CIS Top 20, MITRE ATT&CK, and OWASP Top Ten
• Deep knowledge of crypto, authentication and authorization protocols and standards, including SSL/TLS, SAML, OAuth, JWT Tokens is a must
• Possess a relentless desire to (ethically) break into things and can communicate the attack scenarios and mitigation options based on standard framework is desired
• Ability to read and understand Java, JavaScript, and Python
• Ability to automate repetitive tasks, using Python or other scripting language, is a plus
• Experience working in regulated industries, with a focus on healthcare security standards (HIPAA, HITRUST) is a plus.

Nice-to-have

• 2+ years of experience in web application penetration testing or a security-focused application development role is a must
• AWS Security, CEH, GWEB, GCIH or equivalent certifications are preferred
• Ability to work in a diverse, fast-paced environment and effectively collaborate across teams
• Outstanding written and oral communication skills with demonstrated ability to clearly articulate to both a technical and functional audience

"So what's in it for me," you ask?

We pride ourselves for being a culture-based company buzzing with high-energy. Aside from the enthusiastic environment, you'll enjoy:

• Competitive salary
• Health insurance
• Referral bonuses
• Generous vacation time
• Paid Maternity and Paternity leave
• Work from home days
• Lunch facility within office
• Travel allowance
• Company equipment (laptop, internet device, screens etc)
• Professional development and career growth opportunities
• Awesome team members

If we still have your attention, don't delay, send us your resume

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

Security Engineer III- SIEM

F5 is a multi-cloud application services and security company committed to bringing a better digital world to life. F5 partners with the world's largest, most advanced organizations to optimize and secure every app and API anywhere, including on-premises, in the cloud, or at the edge. F5 enables organizations to provide exceptional, secure digital experiences for their customers and continuously stay ahead of threats. For more information, visit

Position Summary:

The F5 Global Cyber Defense and Intelligence team within the Office of the CISO is seeking hard-working and versatile Security Logging Engineers who will focus on updating, maintaining, and creating data pipelines fundamental to security services at F5. You will play a key role in protecting F5 and translating residual risk from critical application deployment into our logging and event platform to ensure data is flowing smoothly and consistently. Success in this role requires individuals to possess a blend of profound technical expertise, extensive knowledge in security, and substantial experience with logging. You'll be working with teams around the world in this position, so flexibility and excellent communication is key to excel in this role.

Responsibilities:

• Be part of the architectural direction, administration, maintenance, documentation, and oversight of the event logger and Security information and event management (SIEM) solution
• Analyze threat models and work with partner teams to ingest logging into the security event monitoring tool.
• Create and maintain integrations and solutions for the log collection, aggregation, indexing, search, alerting
• Manage implementation, enhancement and adoption of the solutions built by the team into operations
• Utilize log ingestion platform for security analytics and identification of tactics, techniques and patterns of attackers
• Collect and review security logs from all systems (Cloud Providers, GitLab, OS, G-Suite, OKTA, IDS, etc.) to ensure they can be used by the detection engineering team
• Ensure compliance with internal policies, standards, and regulatory requirements
• Contribute to creation of security operation runbooks, threat hunting run books

Required Skills & Knowledge:

• Requires at least 6+ years of relevant industry experience preferably in SIEM
• Experience with large scale log aggregation/SIEM systems like SumoLogic, Splunk, Exabeam, LogRhythm, etc.
• Good written and verbal communication skills
• Experience working in site-reliability engineering, cloud security, system engineering, or similar positions
• Demonstrated experience with running systems at scale
• Proficiency to communicate over a text-based medium (Slack, GitLab Issues, Email) and can succinctly document technical details
• A Computer Science or Engineering degree is preferred, but not required
• Automation: Proficiency in scripting language such as Python or Bash.
• Experience with log identifications and analysis withing GCP, AWS, Azure, or other cloud provider.

Bonus Points:

• Experience analysing and interpreting large volumes of data to identify potential threats and security incidents
• Nice to have: Experience implementing Data Engineering patterns with Spark, Databricks, pandas, or SQL
• Nice to have: An understanding of attacker exploit and evasion techniques
• Nice to have competency in BigQuery, Athena, or any cloud provider query language.
• Nice to have familiarity with regex
• SANS (GCFR, GMON, or other related certifications )

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Please note that F5 only contacts candidates through F5 email address (ending with ) or auto email notification from Workday (ending with or ).

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting

.

Tekvaly is looking for a Cyber Security Engineer in Pakistan for it's client

Who We Are:

Tekvaly
is a diversified global software development and IT consulting company that gives both offshore and onshore technical solutions to business enterprises. Our mission is to enable superior returns on clients' technology investments through best-in-class industry solutions, domain expertise and global scale. We feel deeply connected to our customers, and therefore our success isn't just a matter of our bottom line, but a reflection of how our customers flourish, and how their communities thrive. We strive to understand our customers' individual needs so that we can develop products and services that enhance their livelihoods. Our customers are our partners, and when we rise, we rise together.

Responsibilities:

• Monitor and analyze security alerts to identify and respond to potential threats promptly.
• Manage and track vulnerabilities, perform risk assessments, and collaborate with teams to mitigate risks.
• Conduct in-depth investigations of security incidents, document findings, and recommend remediation actions.
• Utilize advanced SIEM tools to monitor and analyze security events and alerts.
• Develop and deliver security policies, procedures, and identity & access management solutions based on industry standards, regulations, and best practices.
• Prepare and present comprehensive reports on security threats, incidents, and trends to senior management.
• Administer and maintain cybersecurity tools and technologies to optimize their effectiveness.
• Drive enhancements to security that are both practical and achievable, considering business needs and security risks.

Requirements
:

• 3+ years of working experience as a Cyber Security Engineer.
• Strong understanding of cyber security concepts across a broad scope of IT areas.
• Hands-on experience with security tools and technologies, including firewalls, IDS/IPS, SIEM, vulnerability scanners, and endpoint protection solutions.
• A Bachelor's degree in Computer Science or an equivalent combination of industry-related professional experience and education.

Soft Skill We Like to See:

• Excellent Communication skills.
• Adaptability and willingness to learn.
• Analytical skills.
• Ability to work in a team environment and collaborate effectively with others.

Be a Part of Our Team:

With a highly skilled and experienced technical workforce, we pride ourselves as a premier IT Company serving clients in diversified business verticals. We understand our customers and nurture passion when it comes to delivering end-to-end solutions. We believe in utilizing technology to make things simple and easy to us.

We recognize that results are not tied to the number of hours put in to achieve them. There's no reward for long hours with poor results and there's no penalty for going home on time when you're producing excellent work. We understand, to be great, most of us have to put in considerable effort, but hard work and long hours are not how we measure or talk about your contribution.

***

We are committed to an inclusive and barrier-free workplace that reflects the diversity in each of our offices. Accommodations will be provided on request for candidates taking part in all aspects of our recruitment and selection process.

We thank all candidates for their interest however only those selected for an interview will be contacted.

***