Key skills
Cybersecurity principlesNIST frameworkSOC2 frameworkSIEMVulnerability scannersEndpoint protectionIdentity management systemsIncident responseThreat analysisRisk assessment methodologiesISO 27001Ticketing systemsSecurity policies and proceduresIAMIdentity ManagementRisk ManagementCommunicationTime ManagementCollaboration
About this role
Cyncly is a global technology powerhouse with over 2,400 employees providing innovative software solutions across various industries. The Senior Security Engineer will be responsible for enhancing the organization's security posture through proactive risk management and collaboration with cross-functional teams to enforce security policies and procedures.
Responsibilities:
- Work in a 24×7 operational environment, including night shifts, weekends, and holidays, as per roster
- Oversees identity and access management (IAM) operations, including user provisioning, role-based access control, privileged access reviews, and account lifecycle tasks such as unlocking, disabling, and multi-factor authentication resets
- Contributes to the development and enforcement of access policies and conditional controls to strengthen account security
- Supports the implementation and monitoring of endpoint protection and threat detection tools to enhance organizational resilience
- Develops and maintains standard operating procedures (SOPs) for key security processes, including onboarding, offboarding, and access governance
- Participates in the rollout and enforcement of data protection policies to prevent unauthorized data exposure
- Responds to security-related service requests and incidents, ensuring timely resolution and compliance with internal controls
- Collaborates with cross-functional teams to support compliance initiatives, risk assessments, and internal audits
- Ensure continuous monitoring, response, and support for critical systems and services
- Participate in shift rotations and handovers with clear documentation of ongoing activities, incidents, and priorities
- Maintain high alertness and responsiveness during non-business hours, when risk exposure is higher
- Monitor, detect, and respond to security incidents or operational issues in real time
- Ensure timely escalation of high-severity incidents as per defined SLAs
- Maintain audit trails and documentation for all actions taken during shifts
Requirements:
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent practical experience)
- 3+ years of experience in IT with 2+ years of experience in information security is must
- Solid understanding of cybersecurity principles, frameworks (e.g., NIST, SOC2), and best practices
- Experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and identity management systems
- Familiarity with incident response, threat analysis, and risk assessment methodologies
- Strong analytical and problem-solving skills with attention to detail
- Excellent communication skills, both written/verbal, with the ability to collaborate across teams
- Ability to manage multiple priorities in a fast-paced environment
- Experience working with ticketing systems and documenting security processes
- Incident detection and response
- Familiarity with security tools (e.g., SIEM, EDR)
- Knowledge of ISO 27001, NIST, or similar frameworks
- Process-driven and detail-oriented
- Risk assessment and mitigation
- Strong analytical and problem-solving abilities
- Clear written and verbal communication
- Documentation and reporting proficiency
- Task and time management
- Commitment to continuous learning
- Maintain professionalism and decision-making consistency across all teams
- Be prepared to handle critical situations independently during off-hours
- Adhere to organizational policies, security guidelines, and operational procedures
- Support continuous improvement of shift processes and operational efficiency