Cyber Security Engineer

This is a remote position.

Role : Cyber Security Engineer

Team : Infrastructure

Dept: Digital & Technology

Job Description:

As a Cybersecurity Engineer at flydocs you will be responsible for designing implementing and managing cybersecurity solutions for our inhouse SaaS solutions and supporting our clients in the aviation sector. You will work closely with our team of experts to assess security risks deliver strategies and oversee technologies that safeguard critical systems and data.

Requirements

Key Responsibilities:

Security Assessment and Risk Management:

Working alongside our Information Security Compliance and Infrastructure Specialists you will be supporting the following;

Conduct comprehensive cybersecurity assessments for aviation clients identifying vulnerabilities and assessing the effectiveness of existing security controls.

Support the risk management strategies tailored to the unique needs and challenges of aviation organizations prioritizing security initiatives based on risk exposure.

Security Architecture and Implementation:

Design and deploy security architectures for our cloudbased solutions and their integrations into various aviation systems including networks applications and infrastructure components.

Implement security controls and technologies such as firewalls intrusion detection/prevention systems encryption and multifactor authentication to protect against cyber threats.

Incident Response and Forensics:

Develop incident response plans and procedures for aviation clients outlining protocols for detecting containing and mitigating security incidents.

Provide forensic analysis and investigation support in response to cybersecurity incidents documenting findings and recommending remediation actions.

Compliance and Regulatory Guidance:

Ensure compliance with aviation cybersecurity regulations and standards such as ISO GDPR and NIST Cybersecurity Framework as well as industryspecific guidelines.

Assisting the company in preparing for regulatory audits and assessments providing guidance on best practices and controls implementation.

Security Awareness and Training:

Supporting the Information Security Specialist in the following

Develop and deliver cybersecurity awareness training programs for all staff educating employees and stakeholders on security best practices and policies.

Promote a culture of security awareness within client organizations emphasizing the importance of cybersecurity hygiene and risk mitigation.

Qualifications:

Bachelor s degree in Computer Science Information Security or related field.

Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH) or other relevant certifications.

Proven experience in cybersecurity roles with a focus on consulting or advisory services for clients (aviation clients an advantage).

Strong understanding of Infrastructure systems and protocols as well as relevant cybersecurity standards and regulations. Past work experience as a system administrator is a huge advantage.

Proven implementation knowledge of security platforms like CrowdStrike/Sophos especially within the cloud technologies arena (Azure AWS GCP).

Proven understanding of both server and endpoint platform tooling like SIEM/MDR/XDR/MDM

Microsoft 365 administration knowledge also an advantage.

Excellent communication and presentation skills with the ability to convey technical concepts to nontechnical audiences.