Security Expert

Objective: (summary about the position)

Seeking a highly experienced and strategic Security Expert to lead the design implementation and continuous improvement of cybersecurity measures across our hybrid environment. This role requires overseeing infrastructure application and cloud security; managing threat detection and response systems; guiding the security posture of internally developed software; and ensuring regulatory compliance through GRC frameworks. The ideal candidate brings technical depth leadership capabilities and a proactive mindset to protect our digital assets and business operations.

Responsibilities:

1. Security Architecture & Strategy

• Design integrate and maintain end-to-end security architecture for on-premises and cloud environments.
• Ensure secure network topology including segmentation access control and VPN tunnels.
• Lead development and enforcement of security policies procedures and best practices.
• Work closely with developers and IT architects to embed security into application and infrastructure design.

2. SOC SIEM and Threat Management

• Oversee the operation and tuning of Security Operations Center (SOC) including SIEM platforms.
• Manage endpoint protection through EDR and threat-hunting solutions.
• Manage and enhance email security systems to protect against phishing malware and spam ensuring compliance with organizational security policies.
• Lead incident response efforts and develop threat prevention strategies.
• Stay current with emerging threats vulnerabilities and evolving attack techniques.

3. Application and Cloud Security

• Supervise vulnerability scanning and penetration testing for internally developed applications.
• Lead WAF deployment and optimization to protect business-critical web applications.
• Implement security best practices and policy enforcement across multi-cloud environments.
• Ensure secure identity access and role management for all cloud services.

4. Governance Risk & Compliance (GRC)

• Drive cybersecurity-related compliance programs (e.g. SOC 2 Type 2 ISO 27001).
• Lead cross-functional GRC initiatives and support internal/external audits.
• Manage security risk assessments and recommend mitigation strategies.

5. Documentation & Collaboration

• Maintain detailed documentation for security controls policies systems and incidents.
• Plan and conduct quarterly security awareness sessions to educate staff on emerging cyber threats security best practices and the organizations security policies.
• Work collaboratively with software engineers network teams DevOps and business units.
• Communicate complex security matters clearly to technical and non-technical stakeholders.

Min requirements:

1. Education: Bachelors degree in engineering Computer Science Information Security or a related field.

2. Experience:

10 years in cybersecurity and information security roles.

8 years of hands-on experience in security architecture and threat management.

3. Qualifications necessary for the vacancy.

Proven expertise in:

o Security architecture for hybrid cloud/on-prem setups.

o Firewalls WAF EDR SIEM UTM IPS Proxy and DDoS mitigation.

o Network security protocols subnetting VPNs and access control models.

o Experience with cloud providers (Azure AWS GCP) from a security architecture and policy perspective.

o Familiarity with CI/CD pipelines DevSecOps practices and secure software development lifecycle (SSDLC).

4. Set of skills necessary for the vacancy.

Problem-Solving and Analytical Skills:

o Ability to diagnose and resolve complex technical issues efficiently.

o Skilled in designing and implementing scalable and secure IT solutions.

Organizational Skills:

o Strong ability to manage multiple projects and prioritize tasks effectively.

o Commitment to meeting deadlines and maintaining high-quality standards.

Communication and Teamwork:

o Excellent written and verbal communication skills.

o Ability to collaborate effectively with team members and stakeholders.

5. Certifications (Desirable):

CISSP CISM CEH OSCP CCSP

Cloud security certifications (e.g. AWS Security Specialty Microsoft SC-100/SC-200)

IT governance certifications (e.g. ISO 27001 LA CISA)