Objective: (summary about the position)
Seeking a highly experienced and strategic Security Expert to lead the design, implementation, and continuous improvement of cybersecurity measures across our hybrid environment. This role requires overseeing infrastructure, application, and cloud security; managing threat detection and response systems; guiding the security posture of internally developed software; and ensuring regulatory compliance through GRC frameworks. The ideal candidate brings technical depth, leadership capabilities, and a proactive mindset to protect our digital assets and business operations.
Responsibilities:
1. Security Architecture & Strategy
- Design, integrate, and maintain end-to-end security architecture for on-premises and cloud environments.
- Ensure secure network topology including segmentation, access control, and VPN tunnels.
- Lead development and enforcement of security policies, procedures, and best practices.
- Work closely with developers and IT architects to embed security into application and infrastructure design.
2. SOC, SIEM, and Threat Management
- Oversee the operation and tuning of Security Operations Center (SOC) including SIEM platforms.
- Manage endpoint protection through EDR and threat-hunting solutions.
- Manage and enhance email security systems to protect against phishing, malware, and spam, ensuring compliance with organizational security policies.
- Lead incident response efforts and develop threat prevention strategies.
- Stay current with emerging threats, vulnerabilities, and evolving attack techniques.
3. Application and Cloud Security
- Supervise vulnerability scanning and penetration testing for internally developed applications.
- Lead WAF deployment and optimization to protect business-critical web applications.
- Implement security best practices and policy enforcement across multi-cloud environments.
- Ensure secure identity, access, and role management for all cloud services.
4. Governance, Risk & Compliance (GRC)
- Drive cybersecurity-related compliance programs (e.g., SOC 2 Type 2, ISO 27001).
- Lead cross-functional GRC initiatives and support internal/external audits.
- Manage security risk assessments and recommend mitigation strategies.
5. Documentation & Collaboration
- Maintain detailed documentation for security controls, policies, systems, and incidents.
- Plan and conduct quarterly security awareness sessions to educate staff on emerging cyber threats, security best practices, and the organization's security policies.
- Work collaboratively with software engineers, network teams, DevOps, and business units.
- Communicate complex security matters clearly to technical and non-technical stakeholders.
Requirements
Min requirements:
1. Education: Bachelor’s degree in engineering, Computer Science, Information Security or a related field.
2. Experience:
- 10+ years in cybersecurity and information security roles.
- 8+ years of hands-on experience in security architecture and threat management.
3. Qualifications necessary for the vacancy.
- Proven expertise in:
o Security architecture for hybrid cloud/on-prem setups.
o Firewalls, WAF, EDR, SIEM, UTM, IPS, Proxy, and DDoS mitigation.
o Network security protocols, subnetting, VPNs, and access control models.
o Experience with cloud providers (Azure, AWS, GCP) from a security architecture and policy perspective.
o Familiarity with CI/CD pipelines, DevSecOps practices, and secure software development lifecycle (SSDLC).
4. Set of skills necessary for the vacancy.
- Problem-Solving and Analytical Skills:
o Ability to diagnose and resolve complex technical issues efficiently.
o Skilled in designing and implementing scalable and secure IT solutions.
- Organizational Skills:
o Strong ability to manage multiple projects and prioritize tasks effectively.
o Commitment to meeting deadlines and maintaining high-quality standards.
- Communication and Teamwork:
o Excellent written and verbal communication skills.
o Ability to collaborate effectively with team members and stakeholders.
5. Certifications (Desirable):
- CISSP, CISM, CEH, OSCP, CCSP
- Cloud security certifications (e.g., AWS Security Specialty, Microsoft SC-100/SC-200)
- IT governance certifications (e.g., ISO 27001 LA, CISA)