Cyber Security (Remote)

Cyber Security Lead/Manager/Architect

1. Cyber Security Strategy & Leadership:

• Lead and manage the development of cyber security strategies and policies to safeguard enterprise systems, applications, and data.
• Provide leadership and guidance to the security team in identifying and mitigating security risks.
• Define security best practices, frameworks, and security architecture standards aligned with industry regulations (e.g ISO 27001, NIST, GDPR).
• Evaluate and recommend security technologies and solutions to enhance the security posture of client environments.

2. Security Architecture & Design:

• Design and architect scalable, secure systems and infrastructure that align with business goals and compliance requirements.
• Oversee the implementation of secure network architectures, identity and access management (IAM), cloud security, and endpoint security solutions.
• Develop and maintain threat models and security blueprints for complex systems.
• Conduct risk assessments and vulnerability management across both on-premises and cloud environments.

3. Incident Response & Threat Intelligence:

• Lead incident response efforts, including identifying, analyzing, and responding to cyber threats and breaches.
• Work with internal and external teams to develop incident response plans, playbooks, and post-incident reports.
• Stay updated on emerging security threats, vulnerabilities, and attack techniques through continuous research and participation in the security community.

4. Security Monitoring & Auditing:

• Oversee the deployment of security monitoring tools and dashboards to track security incidents and performance.
• Conduct periodic security audits, penetration testing, and vulnerability assessments to identify areas of risk.
• Collaborate with internal teams to review and enhance security controls, ensuring compliance with relevant regulations and standards.

5. Team Collaboration & Mentoring:

• Collaborate with cross-functional teams, including IT, DevOps, product development, and legal, to ensure security is integrated into the software development lifecycle (SDLC).
• Mentor junior team members, providing guidance on security best practices, tools, and technologies.
• Work with executive leadership to ensure alignment of security initiatives with organizational objectives.

Required Qualifications:

• Experience

  : 3 to 9 years of experience in Cyber Security, with expertise in roles such as

  Security Lead

  ,

  Security Manager

  , or

  Security Architect

  .

• Skills

  :
• Deep knowledge of

  network security

  ,

  application security

  , and

  cloud security

  (AWS, Azure, GCP).
• Expertise in

  security protocols

  ,

  cryptography

  ,

  firewalls

  ,

  IDS/IPS

  , and

  endpoint security

  .
• Experience with

  incident response

  ,

  threat hunting

  , and

  forensics

  .
• Familiarity with security tools such as

  SIEM

  (Splunk, ELK),

  firewalls

  (Palo Alto, Fortigate),

  endpoint protection

  (CrowdStrike, CarbonBlack), and

  vulnerability scanning

  (Nessus, Qualys).
• In-depth knowledge of

  security frameworks

  and

  compliance standards

  (e.g ISO 27001, SOC 2, NIST, GDPR, PCI-DSS).
• Experience with

  cloud security

  best practices, including

  IAM

  ,

  data encryption

  , and

  CI/CD pipeline security

  .

• Certifications

  (Highly Preferred):

• CISSP

  (Certified Information Systems Security Professional)

• CISM

  (Certified Information Security Manager)

• CEH

  (Certified Ethical Hacker)

• AWS Certified Security Specialty

  ,

  CCSP

  , or similar cloud security certifications.

• Technical Proficiency

  :
• Strong understanding of

  networking

  (TCP/IP, DNS, VPNs, proxies, etc.) and

  operating systems

  (Linux, Windows, macOS).
• Experience with

  DevSecOps

  , integrating security into the CI/CD pipeline.
• Proficiency with automation tools and scripts (e.g Python, Bash, Ansible) to automate security tasks.

• Soft Skills

  :
• Excellent problem-solving and analytical skills.
• Strong communication skills, with the ability to articulate complex security concepts to both technical and non-technical stakeholders.
• Leadership and team management skills, with the ability to mentor and grow a security team in a remote working environment.
• Ability to work independently and manage competing priorities in a remote work environment.

Desired Skills:

• Experience with

  Zero Trust Architecture

  and

  Identity & Access Management (IAM)

  solutions.
• Knowledge of

  container security

  ,

  microservices

  , and

  Kubernetes

  .
• Experience with

  red teaming

  or

  penetration testing

  .