The State Oil Fund of the Republic of Azerbaijan (SOFAZ) is a sovereign wealth fund established in 1999 to manage and safeguard Azerbaijan's oil and gas revenues for the benefit of current and future generations. SOFAZ plays a crucial role in preserving national wealth, ensuring intergenerational equity, and promoting sustainable economic development.

SOFAZ oversees a diversified investment portfolio, including international equities, fixed income securities, real estate, and other financial instruments. The Fund's investments are guided by a strategic approach aimed at achieving long-term financial sustainability and contributing to the country's economic stability.

By applying for the Lead cybersecurity specialist position within the Information security and cybersecurity management division, you will play a key role in strengthening the organization’s cyber defense capabilities, implementing cybersecurity strategies in real operational environments, and ensuring sustainable risk management across critical systems.

This role offers the opportunity to work with advanced security technologies, contribute to enterprise-level security architecture, and be part of a high-performing cybersecurity team.

What You Will Do?

• Designing, implementing, configuring, and operating enterprise cybersecurity solutions such as NGFW, Email Security Gateway, PAM, and WAF, ensuring high availability and operational effectiveness;
• Planning and executing integrations between security platforms and enterprise management systems;
• Implementing and monitoring security controls in accordance with information security policies, standards, and regulatory requirements;
• Monitoring security alerts, conducting risk assessments, analyzing impact, and defining mitigation and remediation actions;
• Monitoring and analyzing security incidents using SIEM platforms, including daily operations and escalated events;
• Investigating EDR/XDR alerts, performing technical analysis, classification, and risk-level assessment;
• Developing, testing, and deploying real-time detection rules and use cases for SIEM and XDR platforms;
• Analyzing emerging cyber threats, attack campaigns, and malicious activities and integrating findings into SOC operations;
• Preparing incident reports, technical documentation, audit materials, and executive-level security reports.

What You Will Need?

• Bachelor’s degree in Information Security, Cybersecurity, or Information Technology (Master’s degree is preferred);
• Minimum 3 years of relevant professional experience;
• Practical experience with Email Security Gateway, NGFW, PAM, and at least two additional security platforms such as DLP, EDR/XDR, SIEM, ELK, or SOAR;
• Strong understanding of security architecture principles and modern cyber defense methodologies (threat detection, attack prevention, and response techniques);
• Solid knowledge of network technologies and infrastructure security;
• Relevant cybersecurity certifications such as CompTIA Security+, BTL, CCD, OSDA, OSTH, OSIR are highly preferred.

Who Are We Looking For?

We are looking for a cybersecurity professional with a strong understanding of security architecture principles and modern cyber defense methodologies, as well as hands-on experience in threat detection and attack prevention. The candidate should possess solid expertise in network technologies and infrastructure security, demonstrate strong analytical thinking to identify root causes of security incidents, and apply effective risk assessment and mitigation approaches.

In addition, the candidate is expected to collaborate effectively within a team environment, manage priorities efficiently, and execute tasks independently with a high level of responsibility and professionalism.

Are You Interested?

We welcome your application! Please apply through our recruitment system using the link below. Applications will be reviewed continuously throughout the application period.

Applications close on April 29, 2026.