• Partners with either Health Plans or Shared Services to translate privacy, security, artificial intelligence (AI), business continuity, and related requirements from client contracts, laws, and regulations into actionable enterprise controls • Builds trusted relationships with Health Plan leadership and key stakeholders to ensure contract assurance, readiness reviews, Request for proposal (RFP) support, timely deliverable fulfillment, compliance reporting, and continuous improvement • Drives early engagement with Enterprise Privacy, Security and Risk Management (EPSRM) visibility and influence across the organization • Lead EPSRM engagement with Health Plans or Shared Services to ensure privacy, security, AI, and business continuity requirements are clearly understood, implemented, and monitored • Interpret and translate regulatory, contractual, and legal requirements into operational controls and guide stakeholders on compliance expectations • Validate and manage compliance evidence, deliverables, and audit readiness, including responses to regulators, clients, and internal/external auditors • Build and maintain strong relationships with leadership, operational teams, and regulators to remove obstacles, resolve issues, and support consistent compliance practices • Track regulatory, legislative and contract changes, assess organizational impact, and communicate required actions while supporting scalable control updates • Oversee the accuracy and completeness of privacy, security, AI, and business continuity documentation, including plans, attestations, questionnaires, and related submissions • Enhance enterprise engagement processes by driving standardized procedures, governance practices, templates, and continuous improvement efforts • Support new market entries, RFP responses, contract renewals, and business expansion by providing specialized EPSRM subject matter expertise • Identify risks and control gaps, recommend mitigation strategies, and contribute to improved compliance maturity across the enterprise. • Performs other duties as assigned. Complies with all policies and standards.

• Utilize Sophos technologies to investigate, contain, and respond to cyber incidents • Mentor incident response analysts and MDR operations analysts by providing technical guidance, review, and escalation support • Perform advanced incident response analysis to identify initial access, persistence, and lateral movement to contain and remediate threats • Support MDR customers and MSPs by conducting phone calls and joining meetings to discuss cyber incidents, while often providing priority recommendations to contain, neutralize, and remediate • Conduct analysis of cyber incidents for malware, ransomware, and other common attack types • Maintain accurate and detailed documentation for analysis performed during cyber incidents • Work closely with internal SophosLabs, Detection Engineering, and Threat Hunting teams to continuously expand and improve detection logic • Work closely with Sophos MDR Operations teams in providing response, remediation guidance, and excellent customer service • Where appropriate, contribute to Sophos blogs, social media, and other sources on adversary tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), and other investigative findings • Evaluate new technologies and processes to improve the overall incident response capability • Assist in creating accurate and detailed technical incident reports as a post-incident deliverable for MDR customers and MSPs

• Partner with engineering teams to embed security throughout the software development lifecycle, including design reviews, threat modeling, implementation guidance, code review, and release readiness. • Identify, validate, and help remediate common application security vulnerabilities, including injection, broken access control, authentication and authorization flaws, data leakage, insecure deserialization, and server-side request forgery. • Support security reviews of AI-enabled applications and AI-assisted development workflows, including risks related to LLM-integrated systems, coding assistants, prompt injection, sensitive data exposure, and unsafe model or tool interactions. • Develop and maintain secure coding guidance, reusable security patterns, and engineering enablement materials for application, API, cloud, and data protection risks. • Integrate and improve application security testing in CI/CD pipelines, including SAST, DAST, SCA, secrets detection, infrastructure-as-code scanning, and other automated controls. • Provide developer education on secure coding, threat modeling, vulnerability remediation, secure use of third-party components, and safe adoption of emerging technologies. • Track, prioritize, and report application security risks and trends to continuously improve Autodesk's product security posture.

Join our Team About this opportunity: We are thrilled to announce an exciting opportunity for a skilled Back Office L2 Engineer - Security to become part of our dedicated Telecom Security team. In this pivotal role, you will be responsible for the operation and management of our IP-backbone security devices, playing a crucial part in safeguarding our network infrastructure. As a key member of our team, you will collaborate with experts in the field to ensure the integrity and reliability of our security systems. This position offers a unique chance to grow professionally within a dynamic environment that prioritizes innovation and excellence. Ideal for a security enthusiast eager to make a significant impact on telecom security standards and contribute to the advancement of industry-leading practices. What you will do• Manage and troubleshoot in Multi-vendor Firewalls, IPSs, Authentication servers, Token server, Load balancers, DDOS mitigation solution.• Managing & Securing Gi traffic from GGSNs to Etisalat-Misr Internet gateway firewalls.• Managing & Securing communications among IN, VAS, IT, IP-RAN, OSS, SS7/SIGTRAN, NOC, Gi ...etc. nodes!• Responsible for data traffic performance passing through firewalls and investigation/troubleshooting in case of incidents or any abnormalities.• Responsible for defining threats and put action plan for mitigation.• Implementation of all security access requests.• Responsible for all Security IP-backbone expansions, replacements & new plans.• Handling urgent cases out of business hours. (oncall hours)• Handling 3PP Cases with vendors. You will bring• +3 Years of experience in the Security domain.• BSc. degree in computer science or Engineering, major in IT/ Communication or equivalent • Has a proven history in Scripting and automation will be preferred.• Hands-on experience in installation and management for different Firewalls vendors (Juniper SRX, Fortinet, ...).• Hands-on experience in installation and management for F5 Modules (LTM, AFM, ASM, and GTM).• Familiar with Telecom operators Network.• Good presentation and communication skills.• Customer Relationship Management skills.• JNCIP-SEC is a must and F5 certificates will be considered. Why join Ericsson?At Ericsson, you'll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what's possible. To build solutions never seen before to some of the world's toughest problems. You'll be challenged, but you won't be alone. You'll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. What happens once you apply? Click Here to find all you need to know about what our typical hiring process looks like.Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity Employer. learn more. Primary country and city: Egypt (EG) || Cairo Req ID: 786598