Hiring Now: Top Cybersecurity Jobs in September 2025

For professionals seeking top cybersecurity jobs in September 2025, a wide array of specialized roles are now available across the globe. These positions span multiple industries and offer opportunities for both on-site and remote work, reflecting the growing demand for skilled experts in protecting digital assets.

An Application Security Architect position is open at Vancity in Canada, with a hybrid work arrangement. This role involves leading the design and planning of information security projects, including cost estimation and forecasting. The architect will contribute to developing enterprise security documentation such as policies, standards, and procedures. They will also assess security risks across various programs and projects, recommending effective architecture remediation strategies.

RIB Software in India is hiring a Cloud SecOps Lead for a fully remote position. This professional will lead and develop the Security Operations team, defining processes for monitoring, response, and continuous improvement. Overseeing SIEM and SOAR operations to ensure effective detection, alert triage, and automated incident response is central to the role. They will coordinate end-to-end incident response efforts, including containment, remediation, and post-incident reviews.

Voith Hydro in Germany is seeking a Cybersecurity Architect for a remote role. This architect will develop cyber security concepts and architectures with development teams to achieve specific security target levels, supported by threat and risk analysis. They will drive the implementation of cyber security measures throughout the product lifecycle and initiate penetration tests for high-risk areas to validate issues and remediation efforts. Analyzing and evaluating specific customer project security requirements is also part of the job.

MANTECH in the USA has an on-site Cybersecurity Engineer opening. The engineer will conduct in-depth analysis of cyber security tools, applications, and methodology to optimize the enterprise cyber security posture. Using reverse engineering techniques to understand tool behavior, functionality, and impact is essential. They will utilize various tools and techniques to advise on tuning enterprise cyber security tools for scanning, stopping, and alerting on threats, enabling thorough event and incident analysis.

Another Cybersecurity Engineer role is available at Tenet Healthcare in the USA, requiring on-site presence. This engineer will serve as the subject matter expert for the cybersecurity operations team and the main escalation point for SIEM issues, supporting root cause analysis and service restoration. They will help shape the enterprise-wide cybersecurity strategy by collaborating with stakeholders and service providers. Reporting security gaps to leadership with appropriate recommendations is a key duty.

PwC in India is looking for an on-site Cyber Security Consultant. This consultant will design and implement a secure Operational Technology (OT) architecture, including network segmentation, firewalls, access controls, and specific OT security measures. Overseeing incident response activities for OT, including detection, containment, eradication, and recovery to ensure business continuity with minimal disruption, is a primary responsibility.

Daintta in the United Kingdom is hiring a Cyber Security Consultant for a hybrid role. The consultant will support the development and rollout of cyber security strategies, capabilities, and operating models to meet clients’ goals. Undertaking risk and maturity assessments and providing strategic guidance on improving cybersecurity posture using a risk-based approach, including articulating mitigations and their impact on reducing risk, are core functions.

UNSW College in Australia has an on-site Cyber Security Engineer position. This engineer will monitor SIEM and other security platforms for alerts, triaging and escalating incidents as needed. Executing first- and second-level response procedures, including containment, investigation, and documentation, is required. They will also administer and maintain endpoint protection, email security, firewalls, and other security infrastructure, run vulnerability scans, record findings, and coordinate remediation with appropriate teams.

CLUSTER REPLY in Italy is seeking a Cyber Security Engineer for a hybrid role. This engineer will design security architectures for cloud and hybrid environments based on Microsoft Azure and Microsoft 365. Implementing protection solutions using Microsoft Defender, Sentinel, Azure Security Center, Purview, and Intune is essential. Managing identity and access through Azure AD, MFA, PIM, and Conditional Access is also part of the responsibilities.

Accenture in the United Kingdom is hiring a Cyber Threat Investigator for a hybrid position. The investigator will develop, maintain, and enhance security detection content primarily for the Splunk SIEM to enable threat detection across diverse platforms. Performing security monitoring, reviewing and triaging triggered alerts, and suggesting improvements are key tasks. Collaborating with the extended security team to identify gaps in detection coverage, log ingestion, and alerting based on business risks and threats is also required.

Starr in the USA has an on-site opening for an Information Security – Firewall & Network Engineer. This engineer will be responsible for the design, implementation, maintenance, and support of the organization’s firewall infrastructure, with a primary focus on Palo Alto Networks technologies. Ensuring the security and integrity of the company’s networks and working closely with the IT security team to develop comprehensive network security measures are central to the role.

The Dubai Civil Aviation Authority in the UAE is looking for an on-site Information Security Officer. This officer will identify vulnerabilities in DCAA’s network, develop and implement security plans, and monitor network usage for policy compliance. Staying current with IT security threats and standards and performing penetration tests to detect flaws are important aspects of the position.

Pennymac in the USA is hiring an on-site Information Security Penetration Tester. The tester will conduct security assessments using a combination of manual and automated techniques to uncover vulnerabilities and potential attack vectors across enterprise assets. Identifying and prioritizing critical vulnerabilities, incorporating threat intelligence to assess potential exploitability, and ensuring remediation efforts align with the evolving threat landscape are key responsibilities.

HSBC in Germany is seeking an Information Technology and Cyber Risk Manager for a hybrid role. This manager will define security policies, support penetration testing, and drive regulatory and strategic programs. Providing technical support for projects such as new core banking systems and the DORA transition is also part of the job.

Philippine Airlines in the Philippines has a hybrid opening for a Junior Cybersecurity Operations Center Analyst. The analyst will monitor network traffic, system logs, and security devices in a 24×7 SOC environment, analyzing anomalous activity and investigating security incidents. Evaluating security alerts, prioritizing incidents, and escalating critical issues, while providing incident response support and following standard procedures to mitigate security risks, are core duties.

AXA Group Operations in France is looking for an on-site Mainframe Security Lead. This lead will assess IBM Mainframe Z Series and iSeries environments for vulnerabilities and coordinate incident response with relevant teams. Identifying potential threats and taking proactive measures to mitigate risks are essential functions.

Sun Life in Ireland is hiring an on-site Penetration Testing Analyst. The analyst will perform penetration testing and vulnerability scanning activities for Sun Life’s internal and external clients. Presenting reports and data on findings from penetration testing to various support teams and providing guidance, making recommendations to ensure vulnerabilities are adequately addressed, are key responsibilities.

Generali in Italy is seeking a Platform Security Engineer – PKI & Cryptography for a hybrid role. This engineer will design, deploy, and manage PKI services, including root and subordinate Certificate Authorities. Overseeing the lifecycle of digital certificates and managing the CLM solution of the Group are important tasks. Administering and maintaining HSMs to ensure secure key storage and operations, and supporting the management of cryptographic solutions including symmetric/asymmetric encryption, key management, signing, and hashing, are also required.

Sobeys in Canada is hiring a Senior IAM Specialist for a hybrid position. The specialist will design, deploy, and manage CyberArk Secure Infrastructure Access (SIA) for secure, credential-less access to Linux, Windows, and Databases across hybrid environments. Implementing and maintaining Identity Security Intelligence (ISI) for behavioral analytics, anomaly detection, and risk-based policy enforcement are key tasks. Configuring and managing CyberArk Remote Access for secure, agentless vendor access without VPN dependency is also required.

CyberGate Defense in the UAE is looking for an on-site Senior Red Team Specialist. This specialist will design and lead red team engagements that simulate real-world threat actors. Performing comprehensive internal and external penetration tests across web, mobile, and network infrastructure is essential. Identifying vulnerabilities, developing custom exploits, and escalating privileges, along with conducting social engineering assessments including phishing, vishing, and physical intrusion tests, are core responsibilities.

Keyrock in France is seeking a Senior Security Architect for a remote role. The architect will design security methods and controls to ensure the security, integrity, and confidentiality of sensitive data, assets, and systems. Identifying and assessing security risks and vulnerabilities, and formulating and implementing mitigation strategies, are key duties. Developing, refining, and maintaining security policies, standards, and procedures with an emphasis on data and funds security is also required.

Crisis24 in the USA has an on-site SOC Operator opening. The operator will monitor and assess daily alerts, reported incidents, and intrusion alarms. Managing access control, video systems, and intrusion detection, and dispatching security officers as needed, are central tasks. Monitoring events using open-source intelligence and coordinating with local assets are also part of the role.

ECI in the Philippines is hiring an on-site Vulnerability Remediation Engineer. This engineer will lead complex remediation efforts across infrastructure, applications, and cloud environments. Analyzing vulnerability scan results, assessing risk, and recommending or implementing appropriate remediation actions are key responsibilities. Ensuring remediation activities comply with internal policies, SLAs, and regulatory requirements is also essential.

Grant Thornton in Ireland is looking for an on-site Vulnerability Management Specialist. The specialist will manage and maintain the enterprise vulnerability management program, ensuring timely identification and remediation of vulnerabilities across on-prem, cloud, and hybrid environments. Performing vulnerability scans, secure configuration scans, and policy compliance scans using Qualys and other tools are core functions.

Stay informed with weekly updates on new cybersecurity job openings by subscribing to our dedicated service.

(Source: HelpNet Security)