Job Description:

Responsibilities:

1. Technical Leadership: Provide technical leadership and guidance to the cybersecurity team. Lead and mentor junior team members, set technical direction, and drive the execution of cybersecurity initiatives and projects.

2. Security Operations: Oversee security monitoring, incident response, and threat detection efforts. Analyze security events, alerts, and incidents to identify and mitigate risks. Lead incident response activities and ensure timely resolution of security incidents.

3. Vulnerability Management: Lead vulnerability assessments, scans, and remediation efforts. Develop and implement vulnerability management processes and procedures. Prioritize and remediate vulnerabilities based on risk and criticality.

4. Security Architecture and Design: Lead the design and implementation of security architectures, solutions, and controls. Develop security standards and best practices for systems, networks, and applications. Ensure the effective integration of security controls into systems and applications.

5. Incident Response and Forensics: Lead incident response and digital forensics activities. Conduct investigations to determine the root cause of security incidents. Develop and implement preventive measures to mitigate future incidents.

6. Security Awareness and Training: Develop and deliver security awareness and training programs for employees. Promote a culture of security awareness and compliance across the organization.

7. Compliance and Risk Management: Ensure compliance with regulatory requirements and industry standards. Conduct risk assessments and audits to identify and mitigate security risks. Develop and implement security controls to address compliance requirements.

8. Security Documentation and Reporting: Maintain documentation related to cybersecurity policies, procedures, standards, and guidelines. Prepare reports and documentation for internal and external stakeholders, including security incidents, vulnerabilities, risk assessments, and compliance audits.

9. Collaboration and Stakeholder Management: Collaborate with cross-functional teams including IT, operations, compliance, and legal to support their cybersecurity needs and requirements. Communicate effectively with senior management and stakeholders on cybersecurity matters.

Qualifications:

1. Education: Bachelor's degree in computer science, information technology, cybersecurity, or a related field. Advanced degree or relevant certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) are highly desirable.

2. Experience: 8 years of experience in cybersecurity or a related field, with a proven track record of leading and executing cybersecurity initiatives in enterprise environments.

3. Technical Skills:

   • Expertise in cybersecurity principles, concepts, and technologies.
   • Deep knowledge of security tools and technologies such as firewalls, IDS/IPS, SIEM, antivirus, etc.
   • Strong understanding of networking protocols, operating systems, and applications.
   • Experience with vulnerability management tools and processes.
   • Proficiency in Microsoft Office applications (Word, Excel, PowerPoint, etc.).

4. Analytical Skills: Strong analytical and problem-solving skills, with the ability to analyze complex security incidents, vulnerabilities, and risks.

5. Communication Skills: Excellent written and verbal communication skills. Ability to communicate effectively with technical and non-technical stakeholders.

6. Leadership Skills: Proven ability to lead and mentor cross-functional teams, drive successful outcomes, and foster a culture of collaboration and innovation.