• Utilize Sophos technologies to investigate, contain, and respond to cyber incidents • Mentor incident response analysts and MDR operations analysts by providing technical guidance, review, and escalation support • Perform advanced incident response analysis to identify initial access, persistence, and lateral movement to contain and remediate threats • Support MDR customers and MSPs by conducting phone calls and joining meetings to discuss cyber incidents, while often providing priority recommendations to contain, neutralize, and remediate • Conduct analysis of cyber incidents for malware, ransomware, and other common attack types • Maintain accurate and detailed documentation for analysis performed during cyber incidents • Work closely with internal SophosLabs, Detection Engineering, and Threat Hunting teams to continuously expand and improve detection logic • Work closely with Sophos MDR Operations teams in providing response, remediation guidance, and excellent customer service • Where appropriate, contribute to Sophos blogs, social media, and other sources on adversary tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), and other investigative findings • Evaluate new technologies and processes to improve the overall incident response capability • Assist in creating accurate and detailed technical incident reports as a post-incident deliverable for MDR customers and MSPs

• Partner with engineering teams to embed security throughout the software development lifecycle, including design reviews, threat modeling, implementation guidance, code review, and release readiness. • Identify, validate, and help remediate common application security vulnerabilities, including injection, broken access control, authentication and authorization flaws, data leakage, insecure deserialization, and server-side request forgery. • Support security reviews of AI-enabled applications and AI-assisted development workflows, including risks related to LLM-integrated systems, coding assistants, prompt injection, sensitive data exposure, and unsafe model or tool interactions. • Develop and maintain secure coding guidance, reusable security patterns, and engineering enablement materials for application, API, cloud, and data protection risks. • Integrate and improve application security testing in CI/CD pipelines, including SAST, DAST, SCA, secrets detection, infrastructure-as-code scanning, and other automated controls. • Provide developer education on secure coding, threat modeling, vulnerability remediation, secure use of third-party components, and safe adoption of emerging technologies. • Track, prioritize, and report application security risks and trends to continuously improve Autodesk's product security posture.

Join our Team About this opportunity: We are thrilled to announce an exciting opportunity for a skilled Back Office L2 Engineer - Security to become part of our dedicated Telecom Security team. In this pivotal role, you will be responsible for the operation and management of our IP-backbone security devices, playing a crucial part in safeguarding our network infrastructure. As a key member of our team, you will collaborate with experts in the field to ensure the integrity and reliability of our security systems. This position offers a unique chance to grow professionally within a dynamic environment that prioritizes innovation and excellence. Ideal for a security enthusiast eager to make a significant impact on telecom security standards and contribute to the advancement of industry-leading practices. What you will do• Manage and troubleshoot in Multi-vendor Firewalls, IPSs, Authentication servers, Token server, Load balancers, DDOS mitigation solution.• Managing & Securing Gi traffic from GGSNs to Etisalat-Misr Internet gateway firewalls.• Managing & Securing communications among IN, VAS, IT, IP-RAN, OSS, SS7/SIGTRAN, NOC, Gi ...etc. nodes!• Responsible for data traffic performance passing through firewalls and investigation/troubleshooting in case of incidents or any abnormalities.• Responsible for defining threats and put action plan for mitigation.• Implementation of all security access requests.• Responsible for all Security IP-backbone expansions, replacements & new plans.• Handling urgent cases out of business hours. (oncall hours)• Handling 3PP Cases with vendors. You will bring• +3 Years of experience in the Security domain.• BSc. degree in computer science or Engineering, major in IT/ Communication or equivalent • Has a proven history in Scripting and automation will be preferred.• Hands-on experience in installation and management for different Firewalls vendors (Juniper SRX, Fortinet, ...).• Hands-on experience in installation and management for F5 Modules (LTM, AFM, ASM, and GTM).• Familiar with Telecom operators Network.• Good presentation and communication skills.• Customer Relationship Management skills.• JNCIP-SEC is a must and F5 certificates will be considered. Why join Ericsson?At Ericsson, you'll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what's possible. To build solutions never seen before to some of the world's toughest problems. You'll be challenged, but you won't be alone. You'll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. What happens once you apply? Click Here to find all you need to know about what our typical hiring process looks like.Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity Employer. learn more. Primary country and city: Egypt (EG) || Cairo Req ID: 786598

• Set up and drive the overall information security strategy. • Own the ISMS standards and their adoption, ensuring compliance with company and external requirements including SOC 2 and ISO 27001. • Organise and manage ISMS-related scheduled activities and drive continuous improvement of the ISMS. • Contribute to security architecture and design decisions. • Oversee security tooling such as EDR, SIEM, MFA, password managers, device management, and access review processes. • Act as the primary escalation point, during and outside business hours, for all major security-related incidents and events. • Coordinate and manage corrective actions and responses to security incidents. • Own security documentation including policies, standards, exceptions, risk registers, and control evidence. • Oversee the internal risk-assessment and audit programme, supporting internal and external audits, remediating findings, and tracking control improvements to closure. • Support vendor and supplier risk management, including due diligence, sub-processor oversight, and security assessments. • Own the access control process, validate and audit access across divisions and functions. • Provide management reporting on risk posture, incidents, audit status, metrics, service trends, and improvement plans. • Work with engineering, DevOps, HR, and customer-facing teams to embed controls into everyday processes. • Drive ongoing security governance improvements. • Address data privacy and data protection concerns, and manage responses to customer data privacy requests. • Act as Data Protection Officer (DPO) for the organisation if and as required. • Help enforce security policies, building adoption, embedding them in the company culture, and introducing regular checks on departmental compliance. • Own and deliver security awareness training and campaigns to strengthen the security culture. • Complete security-related sections of RFPs and customer questionnaires, build and maintain a security knowledge base, and provide assurance of the integrity, confidentiality, and availability of information owned, controlled, and processed by the organisation. • Attend meetings with customers and prospects to provide insights into how HICX implements security across the organization. • Manage a small team of IT support admins providing internal IT support to HICX employees and contractors. • Act as the escalation point for complex IT issues, incidents, and problems requiring cross-team coordination. • Ensure IT support activities align with security controls, access management, and acceptable use requirements. • Oversee onboarding, offboarding, account lifecycle management, and device provisioning/deprovisioning. • Own and maintain standard operating procedures and the operations platform. • Help balance usability, cost, and security when selecting or renewing SaaS and IT tools. • Carry out other reasonable duties as required by the Company.