Chief Cyber Security Engineer

Job Purpose

The Chief Cybersecurity Engineer leads the design, development, and implementation of an organization’s cybersecurity framework to protect digital assets, systems, and infrastructure.

This role ensures proactive defense against cyber threats, drives security innovation, and aligns cybersecurity initiatives with business and regulatory objectives. The position serves as the technical authority on security architecture and incident response, supporting strategic planning and cross-functional collaboration.

KEY ACCOUNTABILITIES & DECISION-MAKING

Cybersecurity Strategy & Architecture:

• Design and maintain enterprise-level cybersecurity architecture and frameworks.
• Define and update the cybersecurity roadmap in line with organizational goals.

Threat Management & Incident Response:

• Lead efforts to detect, respond to, and recover from security incidents.
• Implement and enhance threat detection, prevention, and response systems (e.g., SIEM, IDS/IPS, endpoint security).

Security Governance & Compliance:

• Ensure adherence to information security policies, procedures, and standards (e.g., ISO 27001, NIST, GDPR).
• Oversee audit readiness and compliance reviews.

Technical Leadership:

• Lead and mentor cybersecurity engineering teams.
• Validate the design and configuration of secure systems, networks, and applications.

Risk Management:

• Conduct and oversee security risk assessments.
• Implement effective mitigation controls and ensure risk is managed within acceptable thresholds.

Stakeholder Collaboration:

• Engage with executive leadership, IT, and business units to align security efforts with organizational priorities.
• Coordinate with external vendors, partners, and regulatory bodies as required.

Continuous Improvement:

• Stay updated on the latest security technologies and threat landscapes.
• Recommend and implement improvements to tools, processes, and capabilities.
• Make strategic and technical decisions related to the organization’s cybersecurity posture, architecture, and investment priorities.
• Approve and enforce security controls, technical standards, and access management policies.
• Determine incident response strategies and containment measures during security breaches.
• Recommend security-related procurement and vendor partnerships based on risk assessments and performance evaluations.