Key Responsibilities

• Design, implement, and manage security strategies, policies, and procedures.
• Perform security assessments, penetration testing, and vulnerability analysis of blockchain infrastructure, APIs, and applications.
• Monitor and respond to security incidents, threats, and breaches.
• Secure cloud infrastructure, networks, and endpoints against attacks.
• Implement identity & access management (IAM), encryption, and key management best practices.
• Conduct risk assessments and recommend mitigation strategies.
• Work closely with developers to ensure secure coding practices and conduct code reviews.
• Stay up-to-date with emerging cybersecurity threats, tools, and compliance requirements.

Required Skills & Qualifications

• 3–5 years of hands-on experience in cybersecurity or information security roles.
• Strong understanding of network security, cryptography, and secure protocols.
• Experience with penetration testing tools (e.g., Burp Suite, Metasploit, OWASP ZAP).
• Knowledge of SIEM tools, IDS/IPS, firewalls, and endpoint protection systems.
• Familiarity with cloud security (AWS, GCP, or Azure).
• Strong grasp of vulnerability management, threat modeling, and incident response.
• Proficiency in Linux/Unix systems and scripting (Python, Bash, PowerShell).
• Understanding of compliance frameworks (ISO 27001, SOC 2, GDPR, NIST).
• Excellent analytical and problem-solving skills.

Good to Have (Preferred)

• Experience in blockchain / Web3 security (smart contract audits, wallet security, cryptographic protocols).
• Knowledge of DevSecOps practices and CI/CD pipeline security.
• Relevant certifications (e.g., CEH, CISSP, OSCP, CISM).
• Prior experience in a startup or high-growth tech environment.

Job Type: Full-time
Pay: AED15,000.00 - AED30,000.00 per month

Experience:

• Network security, Cryptography, Secure protocols: 4 years (Required)
• Burp Suite, Metasploit, OWASP ZAP: 4 years (Required)
• SIEM tools, IDS/IPS, Firewalls, Endpoint protection: 4 years (Required)
• compliance frameworks (ISO 27001, SOC 2, GDPR, NIST).: 4 years (Required)
• Identity & access management (IAM: 4 years (Required)

License/Certification:

• CEH, CISSP, OSCP, CISM (Required)

• Design, implement, and manage security strategies, policies, and procedures.
• Perform security assessments, penetration testing, and vulnerability analysis of blockchain infrastructure, APIs, and applications.
• Monitor and respond to security incidents, threats, and breaches.
• Secure cloud infrastructure, networks, and endpoints against attacks.
• Implement identity & access management (IAM), encryption, and key management best practices.
• Conduct risk assessments and recommend mitigation strategies.
• Work closely with developers to ensure secure coding practices and conduct code reviews.
• Stay up-to-date with emerging cybersecurity threats, tools, and compliance requirements