Cybersecurity Engineer

Job Purpose:The Cybersecurity Engineer is an in-person position based in our Cairo office, to strengthen the security posture of our hybrid cloud and on-premises IT environment, with a strong focus on endpoint protection, system patching, and secure collaboration platforms. This role will help enforce controls across our Windows infrastructure, cloud platforms, and enterprise SaaS tools, all while aligning with global standards such as ISO 27001, ISO 19650, and GDPR.Responsibilities:Endpoint Security & Patch ManagementEnsure all Windows operating systems, desktops, laptops, and servers are patched and up to date using tools like Microsoft Intune, WSUS, or third-party patching tools.Manage updates and security hardening for AEC applications (e.g., Revit, AutoCAD, Navisworks) and enterprise software.Monitor compliance with OS baselines and application version policies across user environments.Perform vulnerability scanning and remediation using tools like Qualys, Defender for Endpoint, or Nessus.Cloud & SaaS SecurityConfigure and manage security controls in Azure and GCP (IAM, policies, conditional access, logging).Harden Office 365 and Google Workspace, including DLP, access policies, and email security.Secure collaboration workflows for file sharing, BIM data, and external users.Identity & Access ManagementMaintain and audit Azure AD, on-prem AD, and SSO integrations.Enforce MFA, role-based access, and privileged identity management.Support secure provisioning/deprovisioning processes for staff and external consultants.Governance, Risk & ComplianceAssist in maintaining documentation for ISO 27001, ISO 19650, and client-specific audits.Contribute to policy enforcement, risk register reviews, and incident reporting.Support security awareness initiatives and best practices across departments.Incident Response & MonitoringInvestigate alerts from SIEM, EDR, and security monitoring tools.Lead incident triage, impact assessments, and resolution tracking.Document lessons learned and improve detection rules/playbooks. Knowledge, Skills & Abilities: Strong understanding of Windows system administration, patching workflows, and endpoint security.Experience with Microsoft Defender, Intune, Azure Security Center, or Google Workspace security center.Knowledge of vulnerability management and remediation.Familiarity with cloud identity, file-sharing risks, and collaborative AEC workflows.AZ-500, CompTIA Security+, or equivalent certifications.Experience with SIEM tools like Sentinel, Chronicle, or Splunk.Exposure to securing AEC platforms (BIM 360, ACC, Newforma, etc.).Scripting for automation (PowerShell, Bash, or Python).QualificationsBachelor or Master’s degree in Computer Science, Information Technology, or related field.3–5 years of experience in cybersecurity or security operations roles.