Enable job alerts via email!
Information Security Engineer
Tkxel
Lahore
On-site
PKR 2,000,000 - 2,750,000
Full time
3 days ago
Be an early applicant
Job summary
A technology company in Lahore is seeking an Information Security Specialist with expertise in compliance frameworks and offensive security. The ideal candidate should have experience with ISO 27001, HIPAA, SOC 2, and a background in penetration testing. Responsibilities include managing ISMS, conducting risk assessments, and performing vulnerability testing. The role offers an opportunity to contribute to security incidents and awareness initiatives.
Qualifications
- 2-3 years in information security roles covering compliance and offensive security.
- Hands-on involvement in ISO 27001 implementation/maintenance.
- Experience performing penetration tests and vulnerability assessments.
Responsibilities
- Maintain and improve the ISMS in alignment with ISO 27001.
- Perform internal and external penetration testing.
- Conduct vulnerability assessments and report weaknesses.
Skills
Compliance frameworks knowledge
Penetration testing skills
Risk assessment proficiency
Communication skills
Education
Bachelor’s degree in Information Security or related field
Tools
ISO 27001
HIPAA
SOC 2
Job description
About the Role:
We are seeking a motivated Information Security Specialist with a strong foundation in compliance frameworks and offensive security. The ideal candidate will have hands-on experience with ISO 27001, HIPAA, SOC 2, as well as practical skills in penetration testing and security risk assessments. This role requires both a compliance mindset and an attacker’s perspective to ensure a well-rounded approach to organizational security.
Key Responsibilities:
● Governance, Risk & Compliance
○ Maintain and improve the organization’s Information Security Management System (ISMS) in alignment with ISO 27001.
○ Support compliance efforts for HIPAA and SOC 2 frameworks.
○ Conduct risk assessments, document findings, and recommend remediation strategies.
○ Assist in preparing for internal and external audits.
● Offensive Security & Technical Security Testing
○ Perform internal and external penetration testing, including web, network, and cloud environments.
○ Conduct vulnerability assessments and report exploitable weaknesses.
○ Simulate real-world attack scenarios to test security controls and incident response readiness.
● Security Awareness & Incident Support
○ Work with cross-functional teams to improve security posture.
○ Contribute to security awareness training programs.
○ Assist in security incident investigations and root cause analysis.
Requirements
Required Qualifications
● Education: Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience).
● Certifications:
○ Mandatory: ISO 27001 Lead Implementer (LI)
○ Offensive Security Certifications: CPPT, CWPTX or similar
● Experience:
○ 2–3 years in information security roles covering both compliance and offensive security.
○ Hands-on involvement in ISO 27001 implementation/maintenance, HIPAA, and SOC 2 compliance projects.
○ Experience performing penetration tests and vulnerability assessments.
Desired Skills:
● Knowledge of security standards such as NIST, CIS Controls, and GDPR.
● Strong report writing and communication skills for both technical and non-technical audiences.
● Understanding of incident response processes.
We are seeking a motivated Information Security Specialist with a strong foundation in compliance frameworks and offensive security. The ideal candidate will have hands-on experience with ISO 27001, HIPAA, SOC 2, as well as practical skills in penetration testing and security risk assessments. This role requires both a compliance mindset and an attacker’s perspective to ensure a well-rounded approach to organizational security.
Key Responsibilities:
● Governance, Risk & Compliance
○ Maintain and improve the organization’s Information Security Management System (ISMS) in alignment with ISO 27001.
○ Support compliance efforts for HIPAA and SOC 2 frameworks.
○ Conduct risk assessments, document findings, and recommend remediation strategies.
○ Assist in preparing for internal and external audits.
● Offensive Security & Technical Security Testing
○ Perform internal and external penetration testing, including web, network, and cloud environments.
○ Conduct vulnerability assessments and report exploitable weaknesses.
○ Simulate real-world attack scenarios to test security controls and incident response readiness.
● Security Awareness & Incident Support
○ Work with cross-functional teams to improve security posture.
○ Contribute to security awareness training programs.
○ Assist in security incident investigations and root cause analysis.
Requirements
Required Qualifications
● Education: Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience).
● Certifications:
○ Mandatory: ISO 27001 Lead Implementer (LI)
○ Offensive Security Certifications: CPPT, CWPTX or similar
● Experience:
○ 2–3 years in information security roles covering both compliance and offensive security.
○ Hands-on involvement in ISO 27001 implementation/maintenance, HIPAA, and SOC 2 compliance projects.
○ Experience performing penetration tests and vulnerability assessments.
Desired Skills:
● Knowledge of security standards such as NIST, CIS Controls, and GDPR.
● Strong report writing and communication skills for both technical and non-technical audiences.
● Understanding of incident response processes.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
Follow us
