Cyber Security Engineer - Vulnerability Management (5-8 yrs)

Job Description :

Security is critical to the success of our business. This role is responsible for protecting our information and products by leading our detection and response initiatives and embedding a culture of proactive cybersecurity at the core of the organization.

Maintaining the highest levels of security and compliance is essential to Jumio's business. This role directly impacts the integrity of our services, enhances customer trust, and supports the company's continued growth by setting and achieving industry-leading security standards.

Responsibilities :

- Perform deep log and network traffic analysis on a regular basis.

- Monitor security events daily, respond to alerts, and track incidents end-to-end.

- Conduct incident triage by determining scope, urgency, and impact, including identifying vulnerabilities and attack vectors, and recommending remediation steps.

- Support the design and deployment of cloud-native security monitoring solutions.

- Create dashboards, define metrics, and establish threshold standards for event monitoring.

- Provide regular KPI and KRI reports on security monitoring effectiveness.

- Develop and maintain cybersecurity incident response documentation : playbooks, runbooks,

policies, and procedures.

- Define and automate use cases for incident response workflows.

- Collaborate with external threat intelligence teams, triage threat feeds, and respond

proactively to relevant threats.

- Maintain effective relationships with internal stakeholders involved in security posture and

incident management.

- Support and participate in security crisis simulations and implement follow-up improvements.

- Champion a culture of cybersecurity awareness and innovation across the organization.

Requirements :

- Proven experience in a detection and response capacity within diverse IT environments (cloud, on-premises, web services, endpoints).

- Hands-on experience with CrowdStrike and cloud security posture management tools.

- Proficiency in Terraform, Kubernetes, Docker, and CI/CD pipelines.

- Intermediate-level experience with Python scripting for SIEM (e. g., Panther) detections and

automation.

- Exposure to monitoring tools such as Prometheus, Grafana, and Datadog.

- Familiarity with AWS, Linux, and Suricata IDS.

- Strong understanding of the MITRE ATT&CK Framework.

- Working knowledge of industry compliance standards like ISO 27001 PCI-DSS, SOC2 and SF

2.0

- Experience building effective global security operations processes.

- Practical experience with security incidents and critical incident management.

- Familiarity with cloud-based threat monitoring (AWS preferred).

- Proven ability to handle Advanced Persistent Threats (APTs), malware, and phishing attacks.

- Relevant certifications (preferred) : CISM, CISSP, CEH, or GIAC Cyber Defense.

Key Attributes & Soft Skills :

- Outcome-driven with a passion for cybersecurity.

- Able to operate with limited direction and minimal detail.

- Comfortable working in agile, self-organizing team structures.

- Innovative thinker who considers both detail and big-picture impacts.

- Highly adaptable, flexible, and quick to learn.

- Strong interpersonal intelligence (EQ) and analytical intelligence (IQ).

- Excellent verbal and written communication skills in English.

- Articulate and persuasive in promoting cybersecurity culture and practices.