Select Page

Lead Security Engineer (Cloud Security, Penetration Testing, and SOC Specialist)| Cybersecurity

Join us as a Lead Security Engineer at Genese Solution! In this role, you’ll lead cloud security, penetration testing, and SOC operations while protecting client environments from evolving cyber threats. Bring your 5+ years of cybersecurity experience, leadership skills, and passion for innovation to help us deliver top-tier security solutions.

Apply Now

Job Title:  Lead Security Engineer| Cybersecurity

Designation: Lead Security Engineer| Cybersecurity

Reports to: CTO & CISO

Location:Bakhundole, Lalitpur 44600, Nepal(Hybrid)

Shift: 2:00 PM to 10:00 PM Monday to Friday.

Position Overview

We are looking for a talented and experienced Cloud Security, Penetration Testing, and SOC Specialist to join our team. This individual will be pivotal in protecting our clients’ cloud environments, identifying vulnerabilities, and providing continuous security monitoring within our in-house Security Operations Center (SOC). Additionally, they will contribute to the development and management of both the internal SOC and SOC-as-a-Service (SOCAAS) solutions.
If you thrive on solving complex cloud security challenges, enjoy staying ahead of evolving threats, and are driven by innovation and continuous learning, we’d love to hear from you.

Roles and Responsibilities

Technical:

1. Security Operations Center (SOC):

    • Lead the SOC team, ensuring efficient incident response and continuous improvement in security monitoring processes.
    • Lead incident investigations for both internal and client environments, addressing and mitigating security breaches and attacks.
    • Develop, manage, and optimize in-house SOC and SOC-as-a-Service (SOCAAS) platforms, ensuring seamless operations.
    • Maintain and enhance SOC tools, processes, and workflows to ensure maximum efficiency and effectiveness.
    • Ensure SOC operations align with organizational security policies, industry standards, and regulatory requirements.

2. Cloud Security:

    • Lead the design and implementation of robust security solutions for cloud environments (AWS, Azure, GCP), ensuring the highest standards of security and efficiency.
    • Spearhead risk and vulnerability assessments for cloud infrastructure, providing strategic direction to identify and mitigate potential threats.
    • Oversee the implementation and management of cloud security tools and services (e.g., IAM, encryption, firewalls, security monitoring), guiding the team in best practices.
    • Lead the team in monitoring and responding to cloud security threats and incidents in real-time, ensuring swift and effective resolution.
    • Drive compliance with industry standards, such as CIS, NIST, and ISO 27001, ensuring that cloud security measures align with regulatory and organizational requirements.

3. Penetration Testing:

    • Lead and conduct penetration tests on cloud-based and on-premises infrastructure, web applications, and network systems.
    • Identify and exploit vulnerabilities, providing actionable remediation guidance to development and operations teams.
    • Direct the development and execution of test plans, ensuring thorough testing of systems to uncover potential weaknesses.
    • Lead client-facing presentations to discuss findings, risks, and proposed solutions, fostering transparent communication and ensuring alignment on security priorities.
    • Stay at the forefront of emerging attack vectors and methodologies, driving continuous improvement in penetration testing strategies and team practices.

 

LeaderShip & Management:

  • Lead and mentor a diverse team of junior and mid-level penetration testers, ensuring their continuous development through coaching and knowledge sharing.
  • Oversee day-to-day activities within the team, managing workloads, providing guidance on technical challenges, and ensuring quality deliverables.
  • Drive team performance and foster a collaborative, high-performance culture focused on security excellence.
  • Manage client relationships and engagements, acting as the primary point of contact for project scoping, planning, execution, and delivery.
  • Lead cross-functional collaboration with other teams, including development, DevOps, and compliance, to align security testing with business and technical objectives.

Strategic:

  • Own and drive the client engagement process, ensuring timely delivery of penetration testing reports, findings, and remediation plans.
  • Develop and manage an in-house Security Operations Center (SOC) and Security Operations Center as a Service (SOCAAS).
  • Continuously refine and enhance internal testing methodologies, tooling, and processes to maintain high-quality standards and testing efficiency.
  • Provide strategic input into the development of the security program and ensure alignment with business objectives and industry best practices.
  • Act as the escalation point for any technical or team-related challenges during the execution of penetration testing projects.
Skills and Qualifications

      Education: Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.

      Experience: 5+ years

      • Experience with incident response, vulnerability management, and risk assessments.
      • Proven experience in cloud security, penetration testing, and SOC operations.
      • Strong knowledge of cloud platforms (AWS, Azure, GCP) and cloud security tools and best practices.
      • Proficiency in penetration testing methodologies and tools (e.g., Burp Suite, Metasploit, Nmap, Kali Linux).
      • Hands-on experience with security monitoring tools, SIEMs (e.g., Splunk, ELK Stack), and threat detection systems.
      • Familiarity with security frameworks, standards, and regulations (e.g., ISO 27001, NIST, PCI DSS).
      • Ability to work independently and as part of a team in a fast-paced, dynamic environment.
      • Strong analytical, problem-solving, and communication skills.

       

      Preferred Qualifications:

      • Certifications such as CISSP, OSCP, CEH,CSOM,GSOM,AWS Certified Security Specialty or equivalent.
      • Experience with scripting and automation for security operations (e.g., Python, Bash).
      • Understanding of DevSecOps practices and integration of security into CI/CD pipelines.
      What We Offer
      • 5 working days a week (09:00 AM – 06:00 PM)
      • Multinational company presence in the UK, Australia, Spain, Nigeria, Nepal, Bangladesh, Pakistan, and India
      • Flexible work environment
      • Best-in-class work environment with friendly team members (refreshment, recreational, and team-building activities)
      • Exposure to team management and leadership
      • Opportunities for international travel as part of training and development
      • Experience working with a leading firm in Cloud Computing in Nepal
      • Multidisciplinary work in a start-up ecosystem

       

      Our Commitments

      We believe that diversity drives innovation. At Genese Solution, we are dedicated to creating a work environment where everyone, regardless of race, gender identity, age, religion, disability, or background, feels respected and included.

      Interested candidates meeting the above criteria are requested to send their CV and cover letter to hr@genesesolution.com clearly mentioning the position you are applying for in the subject. 

      NOTE: Only shortlisted candidates will be contacted for further selection process. 

      Apply Now