This website uses cookies to ensure you get the best experience.

Astra Tech and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
Technology · Abu Dhabi

Cybersecurity Expert

Cybersecurity Expert

Location: Abu Dhabi, UAE

About Us

A leading UAE-based consumer technology company, building the digital infrastructure of everyday life with a focus on AI-powered fintech, communication, and digital services.

Guided by our philosophy, the Blueprint of Simplicity, we design technology around real human behavior, connecting people, enabling financial access, and making everyday experiences effortless.

Our flagship platform, botim, is the region’s most trusted fintech communication platform, combining secure VoIP with action-based AI and everyday money tools. Through botim money, we provide financial services that serve both individuals and SMEs, making payments, transfers, and credit simpler and more accessible. Today, the platform serves 150M+ users worldwide.

Our lending finance engine, Quantix, powers fast, regulated credit across the ecosystem, including innovative products such as CashNow for instant access.

From calls to credit, from daily services to big ambitions, we are rethinking how the region stays connected and financially included.

Role Summary

We are seeking a hands-on Cybersecurity Engineer with deep expertise in offensive security, secrets management, and secure platform engineering.

This role focuses on advanced technical execution, including:

  • Azure infrastructure security

  • Enterprise-grade Key & Secrets Management (PAM / HSM / Key Vault)

  • SOC operation

  • Red/Blue team operations

  • DevSecOps security integration

  • Infrastructure & application-level resilience (DR / security validation)

The ideal candidate is a technical expert, capable of designing and implementing security controls, validating them through adversarial testing, and integrating them into modern cloud-native environments.

Responsibilities

1. Azure Infrastructure Security

Hands-on hardening of Azure tenants — Entra ID (Azure AD), Conditional Access, Defender for Cloud, NSGs, Private Link, Key Vault, Policy & Blueprints, Landing Zone reference architectures, and CIS/Microsoft Cloud Security Benchmark alignment.

2. Key & Secrets Management

Design and operate enterprise key lifecycle — Azure Key Vault / Managed HSM, BYOK/HYOK, certificate lifecycle, rotation, envelope encryption, and integration with PKI and application secrets stores.

3. Privileged Access Management (PAM)

Implement and administer PAM platforms (e.g., CyberArk, BeyondTrust, PAM360 or equivalent) — vault design, session isolation/recording, JIT/JEA, credential rotation, and Tier-0 protection for hybrid identities.

4. VAPT — Web & APIs

Lead and execute vulnerability assessments and penetration tests on web applications and REST/GraphQL APIs aligned to OWASP Top 10, ASVS and API Security Top 10; use Burp Suite Pro, ZAP, Nuclei, and produce risk-rated, developer-actionable reports.

5. DevSecOps

Embed security across CI/CD (Azure DevOps / GitHub Actions / GitLab) — SAST, DAST, SCA, IaC scanning (Terraform/Bicep), container & image scanning, secrets detection, and policy-as-code (OPA / Azure Policy).

6. SOC — Microsoft Sentinel

Operate Microsoft Sentinel end-to-end — data connectors, KQL hunting, analytics & UEBA rules, watchlists, SOAR playbooks (Logic Apps), incident triage, MITRE ATT&CK mapping, and threat intelligence integration.

Required Qualifications & Experience

· Education: Bachelor's degree in Computer Science, Information Security, Engineering or a closely related discipline.

· Experience: 5 – 8 years of hands-on experience in cybersecurity engineering or security operations roles within enterprise or service-provider environments.

· Cloud: Demonstrable, production-grade experience securing Microsoft Azure workloads (multi-subscription, hybrid identity, networking).

· Offensive Skills: Proven track record of delivering web and API penetration tests with formal reporting to enterprise stakeholders.

· SOC: Working experience with Microsoft Sentinel and Microsoft Defender XDR, including KQL, analytics rule authoring, and Logic Apps automation.

· Tooling: Practical exposure to PAM (CyberArk / BeyondTrust / PAM360), Key Vault / HSM, Burp Suite Pro, CI/CD security scanners, and IaC tools.

Division
Technology
Locations
Abu Dhabi
Technology · Abu Dhabi

Cybersecurity Expert

Loading application form

Already working at Astra Tech?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor