Cyber Security Engineer
2026-07-09T21:38:05+00:00
KT Rwanda Networks Ltd
https://cdn.greatrwandajobs.com/jsjobsdata/data/employer/comp_2106/logo/KT%20Rwanda%20Networks%20Ltd.png
https://www.greatrwandajobs.com/jobs
FULL_TIME
Kigali
Kigali
00000
Rwanda
Internet
Computer & IT, Science & Engineering, Protective Services
2026-07-16T17:00:00+00:00
8
Job Summary:
The Cybersecurity Engineer keeps the organization secure by thinking like an attacker and defending like a professional. You spend most of your time on hands-on Red Team (offensive) and Blue Team (defensive) activities: finding weaknesses before adversaries do, and detecting, investigating, and responding to threats when they appear
Roles & Responsibilities:
- Conduct internal and external vulnerability assessments and penetration tests across servers, endpoints, applications, perimeter/internet-facing assets, and telecom platforms.
- Simulate real-world attacks (phishing, social engineering, exploitation) to test defenses and response readiness.
- Exploit and document findings, then work with owners to get them fixed.
- Track remediation and re-test to confirm issues are closed.
- Lead the annual independent VAPT engagement and internal assessments required.
- Monitor environment using SIEM, EDR, firewalls and Anti-DDoS; triage alerts and hunt for threats.
- Detect, investigate, and respond to security incidents; contain, eradicate, and recover.
- Perform root-cause analysis and write clear incident reports.
- Perform basic malware analysis on suspicious files and indicators of compromise.
- Harden systems: baseline configurations, patching, and detection rules.
- Tune and maintain security tooling and detection content.
- Develop security automation scripts and playbooks for faster detection and response.
- Develop, test, and update incident response playbooks and run tabletop exercises; share findings and lessons learned.
- Support security awareness and phishing-simulation programmes.
- Secure, monitor, and harden network and telecom infrastructure (routers, switches, firewalls, and core telecom systems).
- Coordinate vulnerability and patch management across systems and network devices.
- Review the security of new systems, applications, and network changes before go-live.
- Use threat intelligence to anticipate emerging threats and keep detection content up to date.
- Produce weekly and monthly reports on incidents, attempts and threats with clear metrics & trends.
- Prepare management-ready vulnerability reports with clear risk levels and remediation priorities.
- Perform digital forensics and preserve evidence during investigations.
- Review identity and access controls, including privileged accounts.
- Collaborate across offensive and defensive activities to strengthen detection and response.
Required Qualifications:
- Having Bachelor’s Degree in Information Technology (IT), Computer Science, or a related field (or equivalent experience) (Mandatory).
- Hands-on penetration testing certification such as CEH Practical or equivalent (Mandatory).
- Security certifications covering offensive (e.g. OSCP) and defensive (e.g. GCIH, GCIA, BTL1, CySA+, Blue Team), and skills foundational certs such as Security+ (Added advantage)
Required Experience:
- 3+ years in VAPT, SOC, or security operations (telecom environment preferred).
- Strong knowledge of networks, telecommunications, and operating systems (Windows/Linux), with deep understanding of attack and defence techniques (e.g. MITRE ATT&CK).
- Understanding of local telecom and cybersecurity regulations and how they apply to security operations (e.g. regulations issued by regulators such as RURA and the NCSA, among others).
- Hands-on with VAPT tools (Burp Suite, Nessus, Nipper, Metasploit), SIEM (e.g. ELK, Splunk, QRadar, Sentinel), EDR/XDR, and Anti-DDoS solutions.
- Scripting / automation skills (Python, Bash, or PowerShell).
- Familiarity with threat intelligence and detection engineering
- Strong analytical skills and clear written and verbal communication.
- Conduct internal and external vulnerability assessments and penetration tests across servers, endpoints, applications, perimeter/internet-facing assets, and telecom platforms.
- Simulate real-world attacks (phishing, social engineering, exploitation) to test defenses and response readiness.
- Exploit and document findings, then work with owners to get them fixed.
- Track remediation and re-test to confirm issues are closed.
- Lead the annual independent VAPT engagement and internal assessments required.
- Monitor environment using SIEM, EDR, firewalls and Anti-DDoS; triage alerts and hunt for threats.
- Detect, investigate, and respond to security incidents; contain, eradicate, and recover.
- Perform root-cause analysis and write clear incident reports.
- Perform basic malware analysis on suspicious files and indicators of compromise.
- Harden systems: baseline configurations, patching, and detection rules.
- Tune and maintain security tooling and detection content.
- Develop security automation scripts and playbooks for faster detection and response.
- Develop, test, and update incident response playbooks and run tabletop exercises; share findings and lessons learned.
- Support security awareness and phishing-simulation programmes.
- Secure, monitor, and harden network and telecom infrastructure (routers, switches, firewalls, and core telecom systems).
- Coordinate vulnerability and patch management across systems and network devices.
- Review the security of new systems, applications, and network changes before go-live.
- Use threat intelligence to anticipate emerging threats and keep detection content up to date.
- Produce weekly and monthly reports on incidents, attempts and threats with clear metrics & trends.
- Prepare management-ready vulnerability reports with clear risk levels and remediation priorities.
- Perform digital forensics and preserve evidence during investigations.
- Review identity and access controls, including privileged accounts.
- Collaborate across offensive and defensive activities to strengthen detection and response.
- Penetration testing
- Vulnerability assessment
- SIEM
- EDR/XDR
- Anti-DDoS
- Malware analysis
- System hardening
- Security automation scripting
- Incident response
- Digital forensics
- Threat intelligence
- Network security
- Telecommunications security
- Python
- Bash
- PowerShell
- MITRE ATT&CK
- Bachelor’s Degree in Information Technology (IT), Computer Science, or a related field (or equivalent experience)
- Hands-on penetration testing certification such as CEH Practical or equivalent
- Security certifications covering offensive (e.g. OSCP) and defensive (e.g. GCIH, GCIA, BTL1, CySA+, Blue Team), and skills foundational certs such as Security+ (Added advantage)
JOB-6a5014bd08ac9
Vacancy title:
Cyber Security Engineer
[Type: FULL_TIME, Industry: Internet, Category: Computer & IT, Science & Engineering, Protective Services]
Jobs at:
KT Rwanda Networks Ltd
Deadline of this Job:
Thursday, July 16 2026
Duty Station:
Kigali | Kigali
Summary
Date Posted: Thursday, July 9 2026, Base Salary: Not Disclosed
Similar Jobs in Rwanda
Learn more about KT Rwanda Networks Ltd
KT Rwanda Networks Ltd jobs in Rwanda
JOB DETAILS:
Job Summary:
The Cybersecurity Engineer keeps the organization secure by thinking like an attacker and defending like a professional. You spend most of your time on hands-on Red Team (offensive) and Blue Team (defensive) activities: finding weaknesses before adversaries do, and detecting, investigating, and responding to threats when they appear
Roles & Responsibilities:
- Conduct internal and external vulnerability assessments and penetration tests across servers, endpoints, applications, perimeter/internet-facing assets, and telecom platforms.
- Simulate real-world attacks (phishing, social engineering, exploitation) to test defenses and response readiness.
- Exploit and document findings, then work with owners to get them fixed.
- Track remediation and re-test to confirm issues are closed.
- Lead the annual independent VAPT engagement and internal assessments required.
- Monitor environment using SIEM, EDR, firewalls and Anti-DDoS; triage alerts and hunt for threats.
- Detect, investigate, and respond to security incidents; contain, eradicate, and recover.
- Perform root-cause analysis and write clear incident reports.
- Perform basic malware analysis on suspicious files and indicators of compromise.
- Harden systems: baseline configurations, patching, and detection rules.
- Tune and maintain security tooling and detection content.
- Develop security automation scripts and playbooks for faster detection and response.
- Develop, test, and update incident response playbooks and run tabletop exercises; share findings and lessons learned.
- Support security awareness and phishing-simulation programmes.
- Secure, monitor, and harden network and telecom infrastructure (routers, switches, firewalls, and core telecom systems).
- Coordinate vulnerability and patch management across systems and network devices.
- Review the security of new systems, applications, and network changes before go-live.
- Use threat intelligence to anticipate emerging threats and keep detection content up to date.
- Produce weekly and monthly reports on incidents, attempts and threats with clear metrics & trends.
- Prepare management-ready vulnerability reports with clear risk levels and remediation priorities.
- Perform digital forensics and preserve evidence during investigations.
- Review identity and access controls, including privileged accounts.
- Collaborate across offensive and defensive activities to strengthen detection and response.
Required Qualifications:
- Having Bachelor’s Degree in Information Technology (IT), Computer Science, or a related field (or equivalent experience) (Mandatory).
- Hands-on penetration testing certification such as CEH Practical or equivalent (Mandatory).
- Security certifications covering offensive (e.g. OSCP) and defensive (e.g. GCIH, GCIA, BTL1, CySA+, Blue Team), and skills foundational certs such as Security+ (Added advantage)
Required Experience:
- 3+ years in VAPT, SOC, or security operations (telecom environment preferred).
- Strong knowledge of networks, telecommunications, and operating systems (Windows/Linux), with deep understanding of attack and defence techniques (e.g. MITRE ATT&CK).
- Understanding of local telecom and cybersecurity regulations and how they apply to security operations (e.g. regulations issued by regulators such as RURA and the NCSA, among others).
- Hands-on with VAPT tools (Burp Suite, Nessus, Nipper, Metasploit), SIEM (e.g. ELK, Splunk, QRadar, Sentinel), EDR/XDR, and Anti-DDoS solutions.
- Scripting / automation skills (Python, Bash, or PowerShell).
- Familiarity with threat intelligence and detection engineering
- Strong analytical skills and clear written and verbal communication.
Work Hours: 8
Experience in Months: 36
Level of Education: bachelor degree
Job application procedure
Interested in applying for this job? Click here to submit your application now.
Application procedure:
Interested candidates are required to submit the following documents:
- A signed application letter addressed to the Chief Executive Officer (CEO) of KTRN.
- A copy of notarized required academic degree
- A copy of a valid National Identity Card (ID);
- A criminal Record
- An updated Curriculum Vitae (CV) including at least three (3) professional referees and their contact details;
- Supporting documents demonstrating the required work experience.
All application documents must be combined into a single PDF file and submitted no later than 16th July 2026 at 5:00 PM.
Only shortlisted candidates shall be contacted
All Jobs | QUICK ALERT SUBSCRIPTION