Cybersecurity Engineer

Qualification:

• STEM degree or equivalent skills (self-study, labs, certs).
• Foundation in security fundamentals (TLS/SSH basics, keys/certificates, Linux admin).
• Ability to read configs, propose hardening steps, and write clear advisory notes.
• Nice to have / or willing to learn: PKI, IPsec/VPN, email security; risk registers and prioritization; NIST PQC algorithms and hybrid deployment; scripting (Python) for checks/automation.
• Bonus: Familiarity with the quantum threat (timelines, long-lived data risk, HNDL scenarios); introductory knowledge of QKD architectures (trusted-node vs. MDI) and KMS/PKI integration.

Duties:

1. Crypto inventory & risk: Run questionnaires + targeted config/code sampling; map assets to protocols/libraries/algorithms; classify risks (long-life data, algorithm obsolescence, supply chain).
2. Configuration baselines: Publish secure baselines for TLS/SSH/email/VPN in classical, hybrid, and PQC modes; document exception handling.
3. Migration planning: Recommend algorithm/parameter choices; sequence quick wins; define rollback/fallback; sync status/SLAs in the portal.
4. Validation & enablement: Verify remediations, review PRs/configs, produce short “how-to” guides for admins and developers.
5. Incident-readiness & monitoring: Propose logging/telemetry and basic detection for crypto misconfigurations; advise on certificate/key lifecycle.
6. QKDaaS feasibility (security): Contribute threat-model fit, trust assumptions, interop with PQC, key-management integration, PoC test plans, and risk/mitigation write-ups.

Benefits:

• Social security, group insurance, health insurance, annual checkups, provident fund,
• Company party & outing
• Optional one-day work from home or anywhere.
• Working alongside top-tier STEM professionals, business leaders, and industry

‍