Information Technology - Cyber Security Lead Engineer

Job Description

You will be a member of the Group Information Security Team responsible for responding to threats and incidents to the corporate networks, systems (on-prem and cloud) and digital assets.

Key Responsibilities:

• Act as the subject matter expert (SME) for the security systems owned by the security team.

• Recommend and drive cyber security solutions and initiatives to improve the organization's cyber security posture.

• Lead and drive major incidents towards mitigation and resolution in collaboration with multiple internal counterparts.

• Ensure excellent communication to stakeholders, providing timely and accurate updates during incidents.

• Respond to, assess, and investigate security events in collaboration with vendors.

• Coordinate with internal stakeholders such as applications, network, and infrastructure teams for investigations.

• Perform in-depth analysis and assess vulnerabilities, IOCs, cyber security intelligence, and open-source information to validate security risks and impacts, recommending appropriate countermeasures.

• Develop and maintain cyber incident response and handling playbooks for various threat scenarios.

• Recommend and implement tools to enhance detection, response, and recovery functions and overall security posture.

• Develop methodologies to identify threat adversary tactics, techniques, and procedures.

• Stay abreast of new and emerging cyber threats, attack vectors, etc., and assess their impact.

• Provide strategic guidance and oversight to vendors, ensuring adherence to agreed-upon SLAs and KPIs.

• Guide and mentor junior staff within the security operations team, providing support as needed.

• Perform any relevant ad-hoc duties as required.

Requirements:

• Degree in IT or related fields, with at least 6 years of relevant information security working experience.

• Professional security certifications (CISSP, CISA, CEH, GCIH, etc.) preferred.

• Hands-on experience with SIEM, EDR, XDR, UEBA and SOAR tools preferred.

• Strong in-depth working knowledge in Networking, Cloud, Active Directory, Windows and UNIX platforms, and Mitre framework.

• Knowledge of cyber security threats, vulnerabilities, hacking, and exploit methods, etc.

• Strong oral, written, presentation, and interpersonal skills.

• Possess a positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

• Able to work independently and in a team-oriented, collaborative environment.

• Experience in guiding and mentoring junior staff within a security operations team.

• Candidates will be considered for a senior role commensurate with their experience.