Cybersecurity Specialist (VAPT) (JD#10706)

We are looking for a Cybersecurity Specialist to secure critical systems, applications, and infrastructure against evolving cyber threats and data breaches. The role involves identifying vulnerabilities, implementing effective security controls, and supporting incident response and recovery measures.

• Degree in Cyber Security, Computer Science, Engineering or Information Technology;
• Must have at least 5 years of work experience in Information Security operations, policies and procedures;
• Must have demonstrated working knowledge of technology processes, security policies, standards, controls, and risk measurements;
• Proven record in identification, investigation and resolution of potential IT security risks, controls and process gaps;
• Must have experience in performing vulnerability assessments and penetration testing on systems, applications and infrastructure;
• Ability to look at multiple aspects of Security design and management;
• Must have experience with intrusion detection systems and security event analysis;
• Experience in preparing tender specifications for security operations centre and creating SOP for incident response;
• Has provided security advisory, risk assessment, project advisory on Security Architecture, Systems Security Acceptance Testing (SSAT);
• Preempt any risks and mitigate any threats or problematic areas proactively;
• Excellent communication skills and emotional intelligence to influence key decisions, mediate conflicts and build consensus.

• Professional certifications such as CISSP, CISA, CISM, or CompTIA Security+;

• Assess cybersecurity aspects of system, application, and infrastructure designs, ensuring alignment with security requirements and standards;
• Manage external service providers conducting vulnerability assessments and penetration testing, review findings, and recommend effective remediation actions;
• Recommend and implement security controls based on OWASP Top 10, NIST, and CIS frameworks; contribute to the development and maintenance of ISO 27001-aligned policies, procedures, and configurations;
• Participate in audits and internal reviews to validate the effectiveness of ISMS and overall security measures;
• Integrate secure coding and design practices throughout the software development lifecycle, collaborating with developers to identify and fix vulnerabilities;
• Monitor and analyze security logs to detect suspicious activity or data breaches; coordinate with vendors and internal teams to manage incidents, identify root causes, and execute recovery actions;
• Stay updated on the latest cyber threats, vulnerabilities, and mitigation techniques through continuous learning, training, and industry engagement;
• Collaborate with security professionals and governance teams to promote awareness, educate colleagues, and strengthen cybersecurity culture across the organization.

Should you be interested in this career opportunity, please send in your updated resume to apply@sciente.com at the earliest.

When you apply, you voluntarily consent to the disclosure, collection and use of your personal data for employment/recruitment and related purposes in accordance with the SCIENTE Group Privacy Policy, a copy of which is published at SCIENTE’s website (https://www.sciente.com/privacy-policy).

Confidentiality is assured, and only shortlisted candidates will be notified for interviews.

EA License No. 07C5639