> Back to Jobs

Cyber Security Engineer L3

Posted on Jan 02, 2026

Title

Cyber Security Engineer L3

Apply before

Feb 02, 2026

City

Islamabad

Responsibilities

Summary of Job Profile:

Lead the design, implementation, and optimization of enterprise-grade cybersecurity solutions. Collaborate with SOC teams, IT ops, and management to reduce risk exposure. Report to Cybersecurity BU Head; manage junior engineers and vendors as needed.

Essential Duties & Responsibilities:

  • Architect and deploy multi-layered security controls: firewalls (Palo Alto/Cisco), IDS/IPS, WAF, EDR (CrowdStrike/SentinelOne), and endpoint protection.
  • Perform advanced vulnerability management: scanning (Nessus/Qualys), prioritization, and remediation engineering.
  • Conduct penetration testing, red team simulations, and threat modeling using MITRE ATT&CK framework.
  • Develop and automate security playbooks, SOAR integrations (e.g., Splunk Phantom), and custom detection rules.
  • Manage SIEM platforms (Splunk/ELK/QRadar): tuning, dashboarding, and log correlation for threat detection.
  • Harden cloud environments (AWS/Azure/GCP): IAM policies, encryption at rest/transit, VPC security, and compliance configs.
  • Lead security reviews for DevSecOps pipelines, container security (Docker/Kubernetes), and IaC (Terraform/CloudFormation).
  • Ensure regulatory compliance: ISO 27001, NIST 800-53, GDPR/Pakistan Data Protection Act audits and gap analysis.
  • Mentor L1/L2 engineers, conduct knowledge transfers, and contribute to incident post-mortems.
  • Stay ahead of threats: research CVEs, integrate threat intel feeds, and prototype emerging tools.

Requirements

Knowledge, Skills, Abilities (KSA’s) required to successfully perform the job:

Knowledge:

  • Cybersecurity frameworks: NIST CSF, MITRE ATT&CK, CIS Controls, OWASP Top 10.
  • Networking: TCP/IP, BGP, VPNs, zero-trust models.
  • Operating Systems: Advanced Windows/Linux hardening, Active Directory/Azure AD.
  • Cloud Security: Shared responsibility model, CASB/SASE.
  • Compliance: Local/global standards relevant to Pakistan enterprise

Skills:

  • Tools: Burp Suite, Metasploit, Wireshark, Nmap for pen testing/forensics.
  • Programming: Python/Bash/PowerShell for automation, API integrations.
  • Monitoring: SIEM query languages (SPL), regex for log parsing.
  • Other: PKI/certificates, DLP solutions, secure coding practices.

Abilities:

  • Translate business risks into technical mitigations.
  • Scale security solutions for high-volume environments.
  • Troubleshoot complex, multi-vector incidents independently.
  • Document architectures, SOPs, and runbooks clearly. 

Education, Experience, Licensure, Certification required for the position:

  • Bachelor's/Master's in Computer Science, IT, Cybersecurity, or related field.
  • 5-8+ years in cybersecurity engineering; 2+ years at L3/senior level.
  • Certifications (required 2+): CISSP, CISM, OSCP, CEH, CCSP, AWS Certified Security.
  • Preferred: Experience in IT/cyber firms; ZK Teco

Competencies required to successfully perform the job:

Technical Competencies

Behavioral/General Competencies

1. Firewall rules configuration, IDS/IPS tuning, network segmentation

2. IAM least privilege implementation, secrets management, workload protection – AWS Security Hub, Azure Defender

3. Vulnerability scanning, exploitation testing, patch orchestration

4. SIEM alert triaging and correlation searches

5. Behavioral detection, USB control, AV bypass testing

6. CI/CD security scanning, IaC templates, SOAR workflow creation

7. Web/app penetration testing and privilege escalation

1. Strategic Thinking: Align security with business goals; foresee emerging risks

2. Leadership & Collaboration: Guide cross-functional teams; foster knowledge sharing.

3. Communication: Present findings to executives via reports/demos; train stakeholders.

4. Adaptability: Rapid learning of new tools/threats; resilient in high-stress ops.

5. Attention to Detail: Zero-miss on configs; ethical decision-making.

6. Integrity & Confidentiality: Handle sensitive data per company policies.

Benefits

  • Excellent Salary
  • Fuel Allowance
  • Internet Allowance
  • Medical Insurance
  • Annual Leaves
  • Provident Fund
  • EOBI
  • Annual Bonus