Security Operations Engineer
CXG
contract
Posted on:
Location Type: Hybrid
Location: Beirut • Lebanon
Visit company websiteExplore more
Tech Stack
About the role
- We are growing! We are looking for a **Security Operations Engineer** who can work with in a hybrid or a remote set-up. For this role, we are specifically looking for candidates based in Tunisia or Lebanon.
- **Who we are:**
- Founded in 2006, we’re proud to be a global business. From Shanghai to Paris, we have 12 offices and operate across four continents in 70 countries. We are home to over 250 professionals from around the world, working together to serve more than 230 luxury clients.
- At CXG, we love to evolve, elevate, and transform experiences while bringing brand promises to life. We offer strategic solutions that impact performance and elevate the customer experience of some of the world’s most iconic premium and luxury brands.
- **What you will be doing:**
- The **Security Operations Engineer** is responsible for operating, maintaining, and improving the organization’s security controls across cloud and enterprise environments.
- This role focuses on hands-on execution of security operations, ensuring that vulnerabilities are identified, security tools are effectively configured, and incidents are properly handled. The objective is to strengthen day-to-day security posture through structured processes, automation, and collaboration with engineering and IT teams.
- __**Your duties will also involve: **__
- **Security Monitoring & Operations**
- - Monitor security alerts and investigate potential threats
- - Operate and maintain security tools and platforms
- - Support incident detection, analysis, and response activities
- - Ensure proper logging, alerting, and escalation mechanisms are in place
- **Vulnerability Management & VAPT**
- - Run regular vulnerability scans using appropriate tools
- - Support coordination of periodic penetration testing (e.g., quarterly or risk-based)
- - Track vulnerabilities and ensure remediation follow-up
- - Assist in validating fixes and reducing exposure over time
- **Application Security**
- - Run and maintain automated security testing tools (SAST, DAST, dependency scanning)
- - Integrate security checks into development workflows
- - Support developers in identifying and fixing vulnerabilities
- - Contribute to improving secure development practices
- - Automation-first approach. Manual intervention when necessary.
- **Cloud, Network & Infrastructure Security**
- - Support implementation and validation of security configurations in cloud environments
- - Assist in reviewing identity and access controls
- - Contribute to securing network configurations, firewall rules, and application protection mechanisms
- - Support enforcement of encryption, logging, and monitoring standards
- **Microsoft 365 & Endpoint Security Leadership**
- - Operate and maintain enterprise security tools (e.g., Defender, endpoint/device management solutions)
- - Monitor alerts and contribute to improving configurations
- - Support identity protection and access control policies
- - Assist in ensuring secure collaboration and data sharing
- **Third-Party & Vendor Security Governance**
- - Support security assessments of vendors and SaaS tools
- - Assist in completing security questionnaires from clients and partners
- - Contribute to tracking third-party security risks
- **Tool & AI Security Governance**
- - Support security reviews of new tools and technologies
- - Assist in evaluating risks related to AI-based solutions
- - Ensure basic security requirements are considered during tool adoption
- **Incident Preparedness & Response**
- - Participate in security incident handling and investigations
- - Document incidents and contribute to corrective actions
- - Support implementation of preventive measures
- **Awareness, Adoption & Continuous Improvement**
- - Contribute to promoting security awareness across teams
- - Support internal guidance on secure practices
- - Continuously improve processes, tools, and controls
- - Stay updated on emerging threats and security practices
Requirements
- **What you will bring along:**
- - Minimum 3 years of progressive experience in cybersecurity, cloud security, or security operations roles
- - Experience operating security tools in cloud or SaaS environments
- - Experience in SaaS or product-based technology companies preferred
- - Practical experience with vulnerability management and security testing tools
- - Experience working with enterprise security platforms and identity protection systems
- - Exposure to vendor security assessments and client security requirements
- - Familiarity with ISO 27001 or similar
- **Technical Skills**
- - Good understanding of cloud security principles and configurations
- - Solid knowledge of network security, firewall concepts, and application protection
- - Experience with automated security testing tools and vulnerability scanning
- - Understanding of common application security risks
- - Familiarity with identity and access management concepts
- - Ability to analyze security alerts and investigate issues
- - Basic understanding of securing third-party and SaaS tools
- **Soft Skills**
- - Hands-on and execution-oriented mindset
- - Structured and methodical approach to problem-solving
- - Ability to collaborate effectively with engineering and IT teams
- - Clear communication of technical issues
- - Ability to prioritize and manage multiple tasks
- - Continuous learning and improvement mindset
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
cybersecuritycloud securitysecurity operationsvulnerability managementsecurity testing toolsnetwork securityfirewall conceptsapplication securityidentity and access managementautomated security testing
Soft Skills
execution-oriented mindsetstructured problem-solvingcollaborationclear communicationtask prioritizationcontinuous learningmethodical approach
Certifications
ISO 27001