Senior Cybersecurity Engineer [Gov Experience]

IDEMIA Public Security, a division of IDEMIA Group, is the premium provider of trusted biometric solutions that revolutionize public security and identity, travel and transport, and access control. Our solutions—designed using advanced security features and encryption technologies—enable our clients to build safer and fairer societies where people can live, interact, and move freely.

This specialist role requires technical expertise across multiple cybersecurity verticals and technologies to perform security risk assessments, security operations, and security architecture reviews, ensuring compliance with cybersecurity and risk requirements for our solutions.

1. Work with partners to conduct and review comprehensive security assessments and penetration tests for customer ICT systems in on-premises and managed hosting environments.

2. Identify security and compliance gaps, perform threat risk assessments, and propose mitigating measures.

3. Standardize and refine security incident response and escalation processes.

4. Develop and recommend appropriate mitigation countermeasures in operational and non-operational situations.

5. Collate data points from stakeholders for security scorecard reporting and provide actionable insights.

6. Collaborate with the IT Infrastructure team to evaluate, implement, and enhance security measures such as network perimeter security, endpoint security, SIEM, patch management, MFA, and Privileged Access Management (PAM).

7. Coordinate with the Software team for security assessments including SAST, DAST, Source Code Review, Software Composition Analysis, and Secure Configuration Review.

8. Monitor security alerts, triage, mitigate, and escalate issues promptly.

9. Provide regular security advisories to stakeholders.

10. Manage IT security aspects across various domains including network, server, application, endpoint, email, physical, and logical access security.

11. Stay updated on IT/OT security advancements and introduce relevant enhancements to client systems.

12. Travel to customer sites as needed for cybersecurity reviews and implementations.

1. Degree or Diploma in engineering, science, or information technology or equivalent.

2. Preferably 5 years of experience in cybersecurity analyst/engineer roles.

3. At least 3 years of proven experience conducting security assessments using tools and methodologies such as OWASP, NIST, MITRE ATT&CK, and industry frameworks.

4. Strong knowledge of security risk management, governance, compliance, and assessment techniques including vulnerability assessments, penetration testing, and secure configuration reviews.

5. Basic understanding of security standards like NIST, ISO/IEC 27001/2, CIS Controls, PDPA. Knowledge of IM8 is a plus.

6. Proficiency in at least 3 of the following security tools:

   • Next Generation Firewalls (e.g., FortiGate, Palo Alto, Cisco FirePower)

   • Tenable Security Center

   • Endpoint Protection (e.g., Trellix, SCCM, Ivanti)

   • Data Loss Prevention

   • SIEM (e.g., Splunk, Elastic)

   • Python

   • Ansible