Job Mode: HybridJob Type: Full-timeWorking Days: 5Industry: AI ConsultingAbout the Company:The company builds intelligent, scalable, and secure platforms that power real-world business automation and decision-making. We work with modern AI systems, robust backend architecture, and high-performance cloud infrastructure. If you love solving deep technical problems and building production-grade systems, you’ll fit right inWhat You’ll Do:We are looking for a Cybersecurity Engineer who can own and strengthen security across our applications, cloud environments (GCP preferred), and data pipelines. This role involves proactive defense, incident response, vulnerability assessment, secure architecture design, and ensuring best practices across the engineering team.Key ResponsibilitiesApplication Security- Perform security reviews for backend, frontend, and microservices (FastAPI/Node/Next.js).- Identify and remediate vulnerabilities (OWASP Top 10, SSRF, RCE, insecureuploads).- Implement secure coding guidelines and perform code reviews.- Configure and maintain WAF, rate limiting, bot protection, and API gateway security.- Guide engineering teams on building secure APIs and authorization flows.Cloud Security (GCP preferred)- Own security configuration of GCP projects, IAM roles, VPC, firewalls, and service accounts.- Implement and monitor Cloud Armor, GCS security, load balancer hardening, secrets management, and KMS.- Ensure secure deployment pipelines (CI/CD), artifact security, and container security.- Configure posture management tools (Security Command Center, Forseti/Cloud Asset Inventory).Data Security- Ensure encryption at rest/in transit across databases & storage.- Implement data access controls, data masking, tokenization, and logging policies.- Monitor for exfiltration, unauthorized downloads, and suspicious data patterns.- Work with DB teams to secure MongoDB, PostgreSQL/MySQL, Elasticsearch, Redis,etc.Threat Detection & Incident Response- Monitor logs, alerts, and anomalies from SIEM/IDS/Cloud logs.- Lead incident investigations (malware, intrusion, crypto-mining attempts, DDoS).- Build runbooks, response playbooks, and security automation.- Conduct periodic penetration tests and vulnerability assessments.What We’re Looking For- Strong understanding of web app security, API security, secure authentication & authorization.- Hands-on with cloud security (GCP preferred; AWS acceptable).- Familiarity with network security: VPCs, firewall rules, routing, proxies.- Experience with SIEM tools (Chronicle, Splunk, ELK stack).- Knowledge of container security (Docker, GKE/K8s).- Experience conducting VA/PT, security audits, and risk assessments.- Strong understanding of Linux security hardening.- Knowledge of secure CI/CD pipelines, secrets management (Vault/Secret Manager).
Job Title
Cyber Security Engineer