Cyber Security Engineer

Kabul, Afghanistan

We’re looking for detail-oriented Cyber Security Engineer to be responsible for desktop, server and network security, troubleshooting network access, and implementing network security policies and procedures at our organization. The security engineer works independently within the established procedures to ensure network security access and protect against unauthorized access, modifications, or destruction throughout the ministry of defense network and information systems. Furthermore, security engineer will be leading his team to make sure the team provides efficient and on time service to the ministry of defense.


  • Installing, administering and troubleshooting network/system security solutions.

  • Conducting vulnerability assessment on regular basis and onitoring network traffic for unusual activity.

  • Determining causes of security violations and recommend corrective actions to ensure data security.

  • Monitor all Operations, infrastructure, security tools and technology.

  • Monitor all internal and external policy compliance.

  • Communicating and briefing management and tier III teams of different sections.

  • Designing security policies and procedures to both technical and non-technical users.

  • Designing BCP and DR planes and making sure they meet all requirements in case failure occur.

  • Help to design, implement, and maintain the Ministry’s cyber-security plan.

  • Recommend security enhancements to IT Management.

  • Auditing polices and controls continuously.

  • Detail out the security incident response program

  • Preparing Security awareness trainings for all technical and non-technical staff.

  • Designing security structure and implement new security solutions.

  • Design and configure Cisco Identity service engine.

  • Responding to security breaches and events via CERT Team

  • Ensuring that MoD data and infrastructure is protected by enabling the appropriate security controls

  • Implementing NESUS Security Center/Manager and related scanners to find vulnerabilities in enterprise network. 

  • Deploying and maintaining Email filter appliance for safe email communication.

  • Responding to security breaches and preparing documentation accordingly.  

  • Implementing Palo Alto networks.

  • Configuring and administering McAfee e-policy orchestrator / Endpoint Security, Data Loss Prevention, Application control and firewall policies.

  • Being able to work in both Linux and Windows environment.


  • Bachelor Degree in IT or computer science / Master degree will be preferred.

  • 6+ years of technical hands OR 4+ years relevant experience

  • Network/System Security experience

  • Working in multi-cultural environment

  • Palo Alto network implementation | PAN Firewall

  • VPN Technologies (IPSec and DMVPN)

  • Strong English communication and technical documentation

  • Leadership skill

  • Windows and Linux experience

  • Endpoint security and email security appliance

  • Should have CEH, CCNP and CompTIA Security online certifications. CCIE Security will be preferred. 

  • Contract Type:  Open Ended 
  • Employment Type: Full Time
  • Salary: As per Company Salary Scale
  • Job Location: Kabul, Afghanistan