Information Technology - Cyber Security Lead Engineer

Job Description

You will be a member of the Group Information Security Team responsible for responding to threats and incidents to the corporate networks, systems (on-prem and cloud) and digital assets.

Key Responsibilities:

. Act as the subject matter expert (SME) for the security systems owned by the security team.

. Recommend and drive cyber security solutions and initiatives to improve the organization's cyber security posture.

. Lead and drive major incidents towards mitigation and resolution in collaboration with multiple internal counterparts.

. Ensure excellent communication to stakeholders, providing timely and accurate updates during incidents.

. Respond to, assess, and investigate security events in collaboration with vendors.

. Coordinate with internal stakeholders such as applications, network, and infrastructure teams for investigations.

. Perform in-depth analysis and assess vulnerabilities, IOCs, cyber security intelligence, and open-source information to validate security risks and impacts, recommending appropriate countermeasures.

. Develop and maintain cyber incident response and handling playbooks for various threat scenarios.

. Recommend and implement tools to enhance detection, response, and recovery functions and overall security posture.

. Develop methodologies to identify threat adversary tactics, techniques, and procedures.

. Stay abreast of new and emerging cyber threats, attack vectors, etc., and assess their impact.

. Provide strategic guidance and oversight to vendors, ensuring adherence to agreed-upon SLAs and KPIs.

. Guide and mentor junior staff within the security operations team, providing support as needed.

. Perform any relevant ad-hoc duties as required.

Requirements:

. Degree in IT or related fields, with at least 6 years of relevant information security working experience.

. Professional security certifications (CISSP, CISA, CEH, GCIH, etc.) preferred.

. Hands-on experience with SIEM, EDR, XDR, UEBA and SOAR tools preferred.

. Strong in-depth working knowledge in Networking, Cloud, Active Directory, Windows and UNIX platforms, and Mitre framework.

. Knowledge of cyber security threats, vulnerabilities, hacking, and exploit methods, etc.

. Strong oral, written, presentation, and interpersonal skills.

. Possess a positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

. Able to work independently and in a team-oriented, collaborative environment.

. Experience in guiding and mentoring junior staff within a security operations team.

. Candidates will be considered for a senior role commensurate with their experience.