Cybersecurity Engineer - Neem

Our client Neem is looking for Cybersecurity Engineer in Karachi.

What are we looking for

We are seeking an experienced Cyber Security Engineer to strengthen Neem's security posture across our fintech infrastructure. The ideal candidate will be responsible for implementing and managing security controls, conducting vulnerability assessments & penetration tests, ensuring compliance with industry standards such as PCI DSS, and safeguarding our systems from evolving threats.
This role will require a deep understanding of financial systems security, cloud security best practices, and the ability to work cross-functionally to ensure all products and services meet security and compliance requirements.

Your responsibilities

• Security compliance & governance
  
  • Lead and maintain PCI DSS certification, ensuring continuous compliance.
    
  • Oversee adherence to fintech-specific regulations and standards.
    
  • Prepare and maintain security documentation, policies, and audit readiness reports.
    
• Vulnerability assessment & penetration testing (VAPT)
  
  • Conduct regular internal and external pentests to identify and mitigate vulnerabilities.
    
  • Work with external security partners for quarterly or annual pentests.
    
  • Remediate vulnerabilities and ensure security patches are deployed timely.
    
• Infrastructure & application security
  
  • Implement security best practices for cloud-based fintech systems (AWS, RDS, APIs, etc.).
    
  • Monitor and manage security certificates, encryption keys, and secure communications.
    
  • Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines.
    
• Incident response & threat management
  
  • Monitor security alerts and respond to potential incidents in real-time.
    
  • Lead root cause analysis for security events and implement preventive measures.
    
  • Stay ahead of emerging threats and recommend proactive defense strategies.
    
• Security awareness & training
  
  • Provide security guidance to engineering teams on secure coding practices.
    
  • Conduct security awareness sessions for internal teams.
    
• Collaborate effectively with cross-functional teams, regulators, auditors, and external vendors to ensure strong security alignment.
  

You should apply if

• Bachelors degree in Computer Science, Information Security, or related field.
  
• At least 5 years of experience in cybersecurity, preferably in fintech or financial services.
  
• Proven experience managing PCI DSS certification and audits.
  
• Relevant certifications such as CISSP, CISM, OSCP, CEH, CCSP, or AWS Security Specialty are a strong plus.
  
• Hands-on experience with pentesting tools and methodologies (OWASP, Burp Suite, Metasploit, etc.).
  
• Strong knowledge of network security, application security, and cloud security (AWS preferred).
  
• Experience with VAPT reporting and remediation tracking.
  
• Familiarity with compliance frameworks such as ISO 27001, SOC 2, or NIST.
  
• Strong communication skills with the ability to explain technical risks to non-technical stakeholders.
  
• Comfortable working in a fast-paced startup environment, balancing hands-on problem solving with long-term security strategy.
  
• You are aligned with our Neem core values and ready to show-up daily in sync with those principles (below)
  

Our Neem core values:

• Our purpose is our north star
• We put autonomy over control
• We roll with YES mindset
• We speak up openly
• We care about our impact
• We nurture ourselves
• At Neem, we are always on the lookout for remarkable talent, values fit, competence, and people driven by purpose. We are building a diverse, inclusive and authentic workplace, so if youre excited about any of the open roles but your past experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.