Cybersecurity Defense Sr. Lead

Are you a highly experienced Cybersecurity Operations expert ready to lead the defense strategy for a high-growth FinTech leader?

We are looking for a Senior Cyber Defense Lead to serve as a Subject Matter Expert (SME) within our 24x7 Security Operations Centre (SOC). This role is the frontline of defense, focused on advanced threat detection, incident response, and continuous improvement of our security posture across a diverse, multi-regional environment.

If you excel at Threat Hunting, mastering SIEM / SOAR platforms, and acting decisively during security incidents, this is your opportunity to directly impact the security of critical financial services.

• Threat Detection & Response: Serve as the technical SME for detecting, prioritizing, and managing security events and incidents. Lead advanced Threat Hunting and perform detailed analysis of logs, tools, and network traffic to identify anomalies.
• SOC Optimization: Develop, fine‑tune, and optimize SIEM use cases, dashboards, and correlation rules to enhance the detection of complex threat vectors, leveraging frameworks like MITRE ATT&CK.
• Security Tool Mastery: Be the hands‑on expert for critical defense technologies including SIEM, EDR, IDS / IPS, DLP, and SOAR solutions, ensuring their effectiveness and availability.
• Incident Handling: Lead and coordinate the full incident lifecycle, from initial classification and analysis to containment and post‑incident reporting / remediation.
• Security Architecture: Support the implementation of new security controls and projects, ensuring they align with best‑practice frameworks (NIST, SAMA CSF, ISO 27001) and enterprise risk objectives.
• Research & Awareness: Stay current with the latest cyber threats, attack techniques, and vulnerabilities to continuously inform and adapt our defense strategy.

• Experience: 3+ years of dedicated experience in Cybersecurity Operations (SOC, DFIR, or Cyber Defense), ideally within a high‑stakes, 24/7 environment.
• Technical Depth: In‑depth, practical knowledge of security concepts, cyber‑attacks, threat vectors, and the use of the MITRE ATT&CK Framework.
• Platform Proficiency: Hands‑on mastery of Security Information and Event Management (SIEM) tools (e.g., Splunk, Sentinel) and proven ability to develop custom use cases.
• Core Technologies: Experience with Vulnerability Management (VM), Endpoint Detection and Response (EDR), Intrusion Detection / Prevention Systems (IDS / IPS), and Cloud Security platforms (AWS / Azure / GCP).
• Certifications: Possession of key industry certifications such as CompTIA Security+, and ideally platform‑specific certifications (e.g., Splunk Certified).

Ready to lead the defense against sophisticated cyber threats? Apply now and protect the future of finance!