Role Overview
Currently seeking a highly qualified, skilled and motivated Security Engineer to join our Information Security Operations, Cyber Threat Management Team. This role is critical in defending the organization against Cyber threats through proactive threat detection, intelligence gathering, vulnerability and risk management. The ideal candidate will bring deep technical expertise, strategic thinking, and leadership to drive continuous improvement in our security posture, with a strong understanding of the supply chain and logistics industry.
Key Responsibilities
As a seasoned professional your key responsibilities will entail leading and/or overseeing vital security intelligence and threat management initiatives, driving vulnerability and external attack surface management and remediation, mentor junior analysts.
Security Intelligence & Threat Management
- Lead and/or overseeing the development and execution of security intelligence programs to identify emerging threats and attack vectors.
- Oversee threat management activities including threat hunting and analysis of advanced persistent threats (APTs).
- Collaborate with internal and external stakeholders to enrich threat intelligence feeds and apply contextual analysis.
Vulnerability Management
- Manage the end-to-end vulnerability and risk management lifecycle, including identification, assessment, prioritization, remediation, and reporting.
- Maintain and enhance vulnerability scanning tools and processes.
External Attack Surface Management
- Monitor and assess the organization's external digital footprint to identify exposed assets and potential attack vectors.
- Assess security implications of common ports (e.g., 443 (HTTPS), 22 (SSH), 3389 (RDP), 53 (DNS), 445 (SMB)) and automate network security controls.
- Work on firewall rule reviews, segmentation strategies, and security policy enforcement.
- Implement tools and processes to continuously discover, classify, and secure internet-facing assets.
- Coordinate incident response and containment efforts to minimize impact and ensure timely recovery.
Operational Leadership
- Lead and mentor a team of security analysts, fostering a culture of excellence and continuous learning.
- Develop and maintain standard operating procedures (SOPs) for threat hunting, vulnerability remediation, IOC investigation and incident response.
- Drive automation and integration of security tools, Incident & Change Mgmt Workflows, adoption of Artificial Intelligence technologies to improve operational efficiency.
Reporting & Metrics
- Develop tools to generate real-time compliance reports, track remediation progress, and reduce audit preparation time.
- Stay ahead of emerging threats, regulatory changes, and vulnerability trends, continuously refining security automation strategies.
- Enhance Configuration Compliance monitoring by automating the processing of audit findings and risk exceptions.
- Ensure that security data is accurate, actionable, and seamlessly integrated with ITSM and GRC platforms.
Qualifications
- Bachelor's or Master's degree in Information Security, Information Technology, or related field.
- 7+ years of experience in Information Technology, with at least 5+ years in Information Security Operations and vulnerability management.
- Expert-level understanding of network security protocols and common port numbers.
- Proven ability to lead security automation initiatives and mentor junior analysts.
- Strong knowledge of threat intelligence platforms including Mimecast, SentinelOne, Tenable, SIEM, EASM tools, and vulnerability management solutions.
- Experience with MITRE ATT&CK framework, threat modeling, and incident response.
- Thorough understanding of Industry Standards & Best practices in Networking, IAM, Endpoint, IOT, Infra & App Security, Email & Brand Protection, Asset & Data Protection
- Relevant certifications (e.g., CISSP, CISM, GIAC, CEH, OSCP) preferred.
Preferred Skills
- Excellent communication, Customer Service & stakeholder management skills.
- Ability to work under pressure and manage multiple priorities.
- Strong analytical, troubleshooting, and problem-solving skills.
- Expertise in developing User Awareness, Training, Experience with Table-top Exercises & Simulations
- Understanding of Information Security challenges specific to the supply chain and logistics industry.
- Experience with ISO & NIST Frameworks
