Responsibilities:

1. Security Operations & Incident Management

• Lead and mature the Security Operations Center (SOC), including monitoring, detection, and response to security incidents.
• Manage and improve SIEM, EDR, IDS/IPS, and other security tools for threat detection and response.
• Oversee incident response activities, including investigation, containment, eradication, and recovery.
• Conduct post-incident reviews and implement improvements to prevent recurrence.

1. Vulnerability & Threat Management

• Coordinate vulnerability scanning, penetration testing, and remediation efforts.
• Assess emerging threats and ensure proactive measures are in place.
• Work with IT and engineering teams to patch vulnerabilities and harden systems.

3. Security Compliance & Risk Management

• Ensure compliance with industry standards (PCI DSS, MAS TRM, GDPR, etc.).
• Support internal and external audits, risk assessments, and regulatory reviews.
• Maintain and update security policies, procedures, and documentation.

4. Security Awareness & Collaboration

• Conduct security training and awareness programs for employees.
• Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines.
• Liaise with external partners, vendors, and law enforcement on security matters.

Job Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, or related field
• 5+ years in information security, with 2+ years in a security operations management role.
• Hands-on experience with SIEM (Splunk, Azure Sentinel, etc.), EDR, firewalls, and cloud security (AWS/Azure/GCP).
• Knowledge of threat intelligence, malware analysis, and forensic tools.
• Familiarity with PCI DSS, MAS TRM, and other financial sector regulations.
• Strong leadership, communication, and problem-solving abilities