Cybersecrurity SME

Please find below the job description for a Senior Cybersecurity SME position.

Job Summary:

We are seeking a highly skilled Cybersecurity Subject Matter Expert (SME) with (8+years of experience in IT Security, Network Security, Cloud Security, and advanced security technologies. This senior role will focus on securing hybrid IT environments, leveraging EDR, DLP, NextGen Firewalls, NAC, Cloud Security, and Data Encryption techniques. The SME will be a leader in guiding the organizations cybersecurity initiatives, ensuring that both cloud and on-premises systems remain protected from emerging threats. You will play a pivotal role in supporting and managing security technologies such as SIEM, CASB, UAM, SOAR, and applying automation through AI/ML in near real-time monitoring, threat detection and mitigation.

Key Responsibilities:

at least

1. Lead the design and implementation of cybersecurity strategies, focusing on

   hybrid environments

   (combination of on-premises, private, and public cloud infrastructures).
2. Manage and

   optimize EDR solutions

   (e.g., CrowdStrike, Carbon Black) to ensure continuous monitoring, threat detection, and endpoint protection.
3. Contribute to the design of

   NextGen Firewalls

   (e.g., Fortinet, Check Point) for advanced threat prevention, network segmentation, and traffic filtering.
4. Support the Implemention of

   Network Access Control (NAC)

   policies to enforce security posture at the network perimeter and provide role-based access control (RBAC) for devices across the network.
5. Develop and enforce

   Data Loss Prevention (DLP)

   strategies to protect sensitive data from unauthorized access or exfiltration, particularly in hybrid work environments.
6. Lead the deployment of

   Cloud Security solutions (CASB)

   to monitor and enforce security policies across

   cloud platforms (AWS, Azure, GCP),

   ensuring secure data handling and compliance.
7. Integrate

   IAM solutions (e.g., Okta, Ping Identity)

   with IDP (Identity Providers), focusing on identity federation and secure authentication across cloud and on-prem environments.
8. Implement Privileged Access Management (PAM) solutions (e.g., CyberArk, BeyondTrust) to secure critical system access and reduce the attack surface from privileged user accounts.
9. Ensure the effective use of SIEM systems (e.g., Splunk, Microsoft Sentinel) for centralized log aggregation, threat detection, threat intelligence, and incident response.
10. Leverage SOAR (Security Orchestration, Automation, and Response) tools to automate and streamline incident response, reducing time to detection and mitigation.
11. Apply AI/ML technologies to enhance security analytics, enabling advanced threat detection, anomaly detection, and predictive security capabilities. (Good to have)
12. Design and enforce encryption protocols for data-at-rest, data-in-transit, and data-in-use, ensuring compliance with security and regulatory standards.
13. Manage security-related regulatory compliance (e.g., HIPAA, PCI DSS, GDPR, SOC 2), aligning policies and controls to industry frameworks such as NIST CSF v2 and ISO 27001.
14. Collaborate with IT, DevOps, and business teams to integrate security into the development lifecycle (DevSecOps) and ensure the continuous protection of applications and data. (Good to have)
15. Oversee periodic security assessments and vulnerability management to identify and address security risks across the entire IT infrastructure.
16. Lead incident response efforts, providing subject matter expertise on investigation, containment, and remediation of security incidents.
17. Foster a security-aware culture by delivering training programs and developing best practices for staff and stakeholders across the organization.

Qualifications:

• Bachelors or Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• CISSP Certification
• Good communication skills to translate complex security concepts for technical and non-technical stakeholders.
• Ability to lead and mentor teams, as well as collaborate with multiple departments to embed security across the organization. (Good to have)