Position: Cyber Security Engineer
Reports to: Information Security Manager
Type of Employment: Full-time
Job announcement Date: 9th July 2026
Job Summary:
The Cybersecurity Engineer keeps the organization secure by thinking like an attacker and defending like a professional. You spend most of your time on hands-on Red Team (offensive) and Blue Team (defensive) activities: finding weaknesses before adversaries do, and detecting, investigating, and responding to threats when they appear
Roles & Responsibilities:
- Conduct internal and external vulnerability assessments and penetration tests across servers, endpoints, applications, perimeter/internet-facing assets, and telecom platforms.
- Simulate real-world attacks (phishing, social engineering, exploitation) to test defenses and response readiness.
- Exploit and document findings, then work with owners to get them fixed.
- Track remediation and re-test to confirm issues are closed.
- Lead the annual independent VAPT engagement and internal assessments required.
- Monitor environment using SIEM, EDR, firewalls and Anti-DDoS; triage alerts and hunt for threats.
- Detect, investigate, and respond to security incidents; contain, eradicate, and recover.
- Perform root-cause analysis and write clear incident reports.
- Perform basic malware analysis on suspicious files and indicators of compromise.
- Harden systems: baseline configurations, patching, and detection rules.
- Tune and maintain security tooling and detection content.
- Develop security automation scripts and playbooks for faster detection and response.
- Develop, test, and update incident response playbooks and run tabletop exercises; share findings and lessons learned.
- Support security awareness and phishing-simulation programmes.
- Secure, monitor, and harden network and telecom infrastructure (routers, switches, firewalls, and core telecom systems).
- Coordinate vulnerability and patch management across systems and network devices.
- Review the security of new systems, applications, and network changes before go-live.
- Use threat intelligence to anticipate emerging threats and keep detection content up to date.
- Produce weekly and monthly reports on incidents, attempts and threats with clear metrics & trends.
- Prepare management-ready vulnerability reports with clear risk levels and remediation priorities.
- Perform digital forensics and preserve evidence during investigations.
- Review identity and access controls, including privileged accounts.
- Collaborate across offensive and defensive activities to strengthen detection and response.
Required Qualifications:
- Having Bachelor’s Degree in Information Technology (IT), Computer Science, or a related field (or equivalent experience) (Mandatory).
- Hands-on penetration testing certification such as CEH Practical or equivalent (Mandatory).
- Security certifications covering offensive (e.g. OSCP) and defensive (e.g. GCIH, GCIA, BTL1, CySA+, Blue Team), and skills foundational certs such as Security+ (Added advantage)
Required Experience:
- 3+ years in VAPT, SOC, or security operations (telecom environment preferred).
- Strong knowledge of networks, telecommunications, and operating systems (Windows/Linux), with deep understanding of attack and defence techniques (e.g. MITRE ATT&CK).
- Understanding of local telecom and cybersecurity regulations and how they apply to security operations (e.g. regulations issued by regulators such as RURA and the NCSA, among others).
- Hands-on with VAPT tools (Burp Suite, Nessus, Nipper, Metasploit), SIEM (e.g. ELK, Splunk, QRadar, Sentinel), EDR/XDR, and Anti-DDoS solutions.
- Scripting / automation skills (Python, Bash, or PowerShell).
- Familiarity with threat intelligence and detection engineering
- Strong analytical skills and clear written and verbal communication.
Application procedure:
Interested candidates are required to submit the following documents:
- A signed application letter addressed to the Chief Executive Officer (CEO) of KTRN.
- A copy of notarized required academic degree
- A copy of a valid National Identity Card (ID);
- A criminal Record
- An updated Curriculum Vitae (CV) including at least three (3) professional referees and their contact details;
- Supporting documents demonstrating the required work experience.
- All application documents must be combined into a single PDF file and submitted via email to recruits@ktrn.rw no later than 16th July 2026 at 5:00 PM.
- Only shortlisted candidates shall be contacted
KTRN Management