Responsibilities
- Perform technical assessments and analyses on emerging technologies such as AI, Cloud, and 5G to evaluate evolving cyber threat landscapes
- Conduct and facilitate workshops to gather requirements and design solution walkthroughs for security projects
- Manage projects involving novel security solutions with vendors, including feasibility proof-of-concept (POC) assessments
- Participate in internal, external, and international cybersecurity forums to propose alternative solutions aligned with best practices and industry standards
- Interpret technical security assessment results and collaborate with technical teams (OS, System, Database, Networks) to develop and implement a robust cybersecurity roadmap
Required competencies and certifications
- Demonstrated experience implementing security products in large enterprise environments
- Minimum 10-15 years of IT security experience, including at least 7 years of technical expertise in cybersecurity domains such as security architecture, engineering, communications and network security, DevSecOps, Security Orchestration and Automation, and Security Analytics
- Proven background and hands-on experience in Cloud Security (AWS, GCC)
- Deep knowledge of Security Governance and Technology Risk management
- Proficiency in Cloud security and DevSecOps practices
- Skilled in security concepts related to infrastructure as code (IaC) and containerization
- Fluency in programming or scripting languages such as Python to support automation and security tasks
- Ability to understand technical implications of security assessments and communicate effectively with technical teams to implement cybersecurity strategies
Preferred competencies and qualifications
- Relevant qualifications in Cyber/Information Security, Computer Science, or Engineering
- Professional certifications such as CISSP, CCSP, CISM
- Extensive domain knowledge of security solutions including Security Information and Event Management (SIEM), Data Loss Prevention (DLP), Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, and Intrusion Prevention
- Hands-on experience in operating and maintaining at least three (3) of the following security tools: Exabeam, CarbonBlack, Tripwire, CyberArk, TrendMicro AV, Splunk, DAM, Tenable and RSA
- Strong with scripting for task automation using Ansible, PowerShell, or Python
- Experience with security testing on API, container, and cloud environments
- Experience managing project plans, tracking milestones, identifying dependencies, and delivering projects on time and within budget
- Familiarity with public sector processes such as CSA security by design principles
- Experience working with JIRA and Confluence collaboration tools
- Strong analytical skills to assimilate information quickly
- Excellent oral and written communication skills with the ability to influence and gain consensus among multiple stakeholders
