Cybersecurity Expert
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Astra Tech seeks a hands-on Cybersecurity Engineer with deep expertise in offensive security, secrets management, and secure platform engineering. The role focuses on Azure infrastructure security, key management, SOC operations, and DevSecOps.
Key Skills for This Role
Responsibilities
- Hands on hardening of Azure tenants — Entra ID (Azure AD), Conditional Access, Defender for Cloud, NSGs, Private Link, Key Vault, Policy & Blueprints, Landing Zone reference architectures, and CIS/Microsoft Cloud Security Benchmark alignment
- Design and operate enterprise key lifecycle — Azure Key Vault / Managed HSM, BYOK/HYOK, certificate lifecycle, rotation, envelope encryption, and integration with PKI and application secrets stores
- Implement and administer PAM platforms (e.g., CyberArk, BeyondTrust, PAM360 or equivalent) — vault design, session isolation/recording, JIT/JEA, credential rotation, and Tier 0 protection for hybrid identities
- Lead and execute vulnerability assessments and penetration tests on web applications and REST/GraphQL APIs aligned to OWASP Top 10, ASVS and API Security Top 10; use Burp Suite Pro, ZAP, Nuclei, and produce risk rated, developer actionable reports
- Embed security across CI/CD (Azure DevOps / GitHub Actions / GitLab) — SAST, DAST, SCA, IaC scanning (Terraform/Bicep), container & image scanning, secrets detection, and policy as code (OPA / Azure Policy)
- Operate Microsoft Sentinel end to end — data connectors, KQL hunting, analytics & UEBA rules, watchlists, SOAR playbooks (Logic Apps), incident triage, MITRE ATT&CK mapping, and threat intelligence integration
Requirements
- Bachelor's degree in Computer Science, Information Security, Engineering or a closely related discipline
- 5 – 8 years of hands on experience in cybersecurity engineering or security operations roles within enterprise or service provider environments
- Demonstrable, production grade experience securing Microsoft Azure workloads (multi subscription, hybrid identity, networking)
- Proven track record of delivering web and API penetration tests with formal reporting to enterprise stakeholders
- Working experience with Microsoft Sentinel and Microsoft Defender XDR, including KQL, analytics rule authoring, and Logic Apps automation
- Practical exposure to PAM (CyberArk / BeyondTrust / PAM360), Key Vault / HSM, Burp Suite Pro, CI/CD security scanners, and IaC tools
Full Job Posting
Role Summary
- We are seeking a hands on Cybersecurity Engineer with deep expertise in offensive security, secrets management, and secure platform engineering.
- This role focuses on advanced technical execution, including Azure infrastructure security, Enterprise grade Key & Secrets Management, SOC operation, Red/Blue team operations, DevSecOps security integration, and Infrastructure & application level resilience.
Responsibilities
- Azure Infrastructure Security: Hands on hardening of Azure tenants — Entra ID (Azure AD), Conditional Access, Defender for Cloud, NSGs, Private Link, Key Vault, Policy & Blueprints, Landing Zone reference architectures, and CIS/Microsoft Cloud Security Benchmark alignment.
- Key & Secrets Management: Design and operate enterprise key lifecycle — Azure Key Vault / Managed HSM, BYOK/HYOK, certificate lifecycle, rotation, envelope encryption, and integration with PKI and application secrets stores.
- Privileged Access Management (PAM): Implement and administer PAM platforms (e.g., CyberArk, BeyondTrust, PAM360 or equivalent) — vault design, session isolation/recording, JIT/JEA, credential rotation, and Tier 0 protection for hybrid identities.
- VAPT — Web & APIs: Lead and execute vulnerability assessments and penetration tests on web applications and REST/GraphQL APIs aligned to OWASP Top 10, ASVS and API Security Top 10; use Burp Suite Pro, ZAP, Nuclei, and produce risk rated, developer actionable reports.
- DevSecOps: Embed security across CI/CD (Azure DevOps / GitHub Actions / GitLab) — SAST, DAST, SCA, IaC scanning (Terraform/Bicep), container & image scanning, secrets detection, and policy as code (OPA / Azure Policy).
- SOC — Microsoft Sentinel: Operate Microsoft Sentinel end to end — data connectors, KQL hunting, analytics & UEBA rules, watchlists, SOAR playbooks (Logic Apps), incident triage, MITRE ATT&CK mapping, and threat intelligence integration.
Required Qualifications & Experience
- Education: Bachelor's degree in Computer Science, Information Security, Engineering or a closely related discipline.
- Experience: 5 – 8 years of hands on experience in cybersecurity engineering or security operations roles within enterprise or service provider environments.
- Cloud: Demonstrable, production grade experience securing Microsoft Azure workloads (multi subscription, hybrid identity, networking).
- Offensive Skills: Proven track record of delivering web and API penetration tests with formal reporting to enterprise stakeholders.
- SOC: Working experience with Microsoft Sentinel and Microsoft Defender XDR, including KQL, analytics rule authoring, and Logic Apps automation.
- Tooling: Practical exposure to PAM (CyberArk / BeyondTrust / PAM360), Key Vault / HSM, Burp Suite Pro, CI/CD security scanners, and IaC tools.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Astra Tech
Manager- Customer Service
Dubai, UAE
Astra Tech seeks a Customer Service Manager in Dubai to oversee high-volume call centre and digital support operations in fintech. The role involves queue management, capacity planning, root cause analysis, and VoC insig
Java Developer
Abu Dhabi, UAE
Astra Tech is looking for a Java Developer to build and maintain Java-based credit risk systems for financial credit scenarios. The role involves designing high-availability APIs, integrating risk rules and ML models, an
Java Developer
Abu Dhabi, UAE
Astra Tech seeks a Java Developer to build and maintain credit risk systems for financial credit scenarios in Abu Dhabi. The role involves designing high-availability APIs, developing rule engines, integrating ML models,
Senior QA Engineer (Risk Management & Automation Testing)
Abu Dhabi, UAE
Astra Tech is seeking a Senior QA Engineer to design and execute test strategies with a focus on risk-based testing and automation for fintech systems. The role involves developing automation frameworks, performing perfo
Partnerships Manager – Consumer Products
Dubai, UAE
Astra Tech seeks a Partnerships Manager to drive customer engagement and product growth through strategic partnerships for consumer financial products in Dubai. The role involves sourcing, negotiating, and managing partn
L2 IT Support Engineer
Dubai, UAE
Astra Tech seeks an L2 IT Support Engineer to manage enterprise IT environment, provide advanced technical support, and administer Microsoft 365, Azure, networking, and enterprise applications. Requires 4+ years of IT su
Business Operations Manager
Abu Dhabi, UAE
Astra Tech seeks a Business Operations Manager to act as business PMO for the lending business, driving operational initiatives and coordinating cross-functional projects. Requires 5+ years in business operations or prog
Risk Systems & Strategy Deployment Manager
Abu Dhabi, UAE
We are looking for a Risk System and Strategy Deployment Manager to own credit risk systems and bridge Risk Strategy, Engineering, and Operations teams. The role involves deploying credit risk policies, monitoring perfor
Manager- Customer Service
Dubai, UAE
Java Developer
Abu Dhabi, UAE
Java Developer
Abu Dhabi, UAE
Senior QA Engineer (Risk Management & Automation Testing)
Abu Dhabi, UAE
Partnerships Manager – Consumer Products
Dubai, UAE
L2 IT Support Engineer
Dubai, UAE
Business Operations Manager
Abu Dhabi, UAE
Risk Systems & Strategy Deployment Manager
Abu Dhabi, UAE