Cyber Security Engineer

About the role

SANDT is seeking a Cyber Security Engineer to help clients strengthen the security, resilience, and reliability of their digital environments. You will design, implement and improve security controls across infrastructure, cloud, applications, networks and identity environments while working closely with IT, security, architecture and business stakeholders.

Key responsibilities

• Manage defined cybersecurity workstreams independently, including planning, execution, documentation and quality assurance.
• Design, implement and improve security controls across infrastructure, cloud, endpoint, network and application environments.
• Support vulnerability management activities, including assessment, prioritisation, remediation follow‑up and risk reporting.
• Contribute to the implementation and optimisation of security tools such as SIEM, EDR/XDR, IAM, firewalls, cloud security controls and monitoring solutions.
• Assist incident detection and response by defining playbooks, escalation flows, investigation steps and lessons learned.
• Collaborate with architects, IT teams, developers and business stakeholders to embed security‑by‑design principles.
• Translate technical risks into clear, decision‑oriented recommendations for technical and non‑technical audiences.
• Support compliance and governance activities linked to frameworks such as ISO 27001, NIST CSF, CIS Controls, OWASP and NIS2.
• Coach junior colleagues or client team members on cybersecurity best practices and delivery standards.

Required profile

• 4+ years of experience in cybersecurity, security engineering, infrastructure security, cloud security, SOC engineering or a related technical security role.
• Hands‑on experience in at least one cybersecurity domain with a solid understanding of the broader cyber landscape.
• Ability to work independently and communicate technical concepts to diverse audiences.

Required skills

• SIEM
• EDR/XDR
• IAM
• Firewalls
• Cloud security controls
• Monitoring solutions
• Vulnerability management
• ISO 27001
• NIST CSF
• CIS Controls
• OWASP
• NIS2