Cyber Security Engineer

We are seeking an experienced Cyber Security Lead with extensive expertise in Governance, Risk & Compliance (GRC), Security Operations, Vulnerability Management, Security Architecture, and Incident Response. The ideal candidate will possess over 10-14 years of cybersecurity experience, leading security teams, implementing enterprise security controls, ensuring regulatory compliance, and enhancing organizational cyber resilience through proactive risk management and security operations.

Key Responsibilities:

• Coordinate internal and external audits and drive remediation activities.
• Lead Security Operations Center (SOC) activities including monitoring, threat detection, incident response, and threat hunting.
• Oversee SIEM, SOAR, XDR, EDR, DLP, WAF, MFA, NAC, and firewall technologies.
• Lead enterprise vulnerability management and security posture assessments.
• Support Zero Trust Architecture initiatives and security transformation projects.
• Review and validate security architecture, HLDs, and LLDs.
• Deliver cybersecurity awareness programs and mentor security team members.
• Develop, implement, and maintain cybersecurity policies, standards, and procedures.
• Monitor security events, alerts, and incidents using security monitoring tools (SIEM, EDR, IDS/IPS).
• Lead investigation, containment, eradication, and recovery activities for cybersecurity incidents.
• Conduct vulnerability assessments, risk assessments, and security reviews of systems, applications, and infrastructure.
• Coordinate and track remediation of identified security vulnerabilities and compliance gaps.
• Support the design and implementation of security controls across cloud, network, endpoint, and application environments.
• Perform security architecture reviews and provide recommendations for secure system design.
• Ensure compliance with regulatory requirements, industry standards, and organizational security frameworks (e.g., ISO 27001, NIST, CIS, PCI DSS).
• Manage and support security technologies such as firewalls, endpoint protection, identity and access management (IAM), DLP, and email security solutions.
• Conduct threat hunting and analyze emerging cyber threats, vulnerabilities, and attack techniques.
• Support third-party/vendor security assessments and supply chain risk management activities.
• Develop and maintain cybersecurity metrics, dashboards, and management reports.
• Participate in business continuity, disaster recovery, and cyber resilience planning and testing.
• Provide cybersecurity awareness training and guidance to employees and stakeholders.
• Collaborate with IT, risk, compliance, and business teams to ensure security requirements are integrated into projects and operations.
• Mentor junior cybersecurity analysts and contribute to the continuous improvement of security operations and processes.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or related field.

• 10+ years of experience in Cyber Security, Security Operations, or GRC.

• Experience leading cybersecurity teams and managing enterprise security programs.

Professional Certifications:

• CISSP

• CISM

• CEH

• CHFI

• CCNA