Cyber Security Engineer

• Design implement and maintain security architecture for on-premises environments.
• Monitor detect triage and respond to security incidents and alerts end-to-end providing L2 and L3 support; own the incident lifecycle from initial detection through containment eradication recovery and post-incident review.
• Operate and tune Microsoft Sentinel (SIEM/SOAR) build detection rules analytic queries and automated playbooks to reduce mean time to detect and respond.
• Leverage Varonis for data access governance insider threat detection and abnormal behaviour alerting across file systems and cloud storage.
• Design plan and execute internal Red Team engagements including scoping rules of engagement adversary simulation and structured debrief to validate defensive controls and identify gaps before real attackers do. Improve and maintain the Red Team Infrastructure aligned with the current threat landscape
• Operate AI/LLM-powered penetration testing tooling against Vitols own infrastructure as part of the Red Team program evaluating its effectiveness and contributing findings to the wider security roadmap.
• Conduct offensive security assessments using industry-standard tools including Burp Suite (web application testing) BloodHound (Active Directory attack path mapping) C2 frameworks.
• Manage incidents reported by CrowdStrike Falcon (endpoint telemetry and threat intelligence) Microsoft Defender (endpoint protection and XDR).
• Perform threat hunting across endpoint network and cloud telemetry; develop and refine threat hunt hypotheses based on current threat intelligence.
• Implement and manage identity and access management solutions with particular attention to privileged access and lateral movement vectors identified through Red Team activity.
• Develop and maintain security documentation including Red Team playbooks IR runbooks and lessons-learned reports.

Qualifications :

• 3 years of hands-on cybersecurity experience with a demonstrable focus on offensive security and/or security incident response practitioner experience will be weighted heavily over managerial or advisory backgrounds.
• OSCP (Offensive Security Certified Professional) required; OSEP OSED CRTO or equivalent offensive security certifications are a strong plus.
• Proven experience operating red team or penetration testing engagements independently from scoping through reporting.
• Proficiency with Burp Suite (web application and API testing) BloodHound (AD enumeration and attack path analysis) C2 frameworks CrowdStrike Falcon (endpoint detection and threat intelligence) Microsoft Defender (endpoint protection and XDR integration) and evasion techniques (AV/EDR bypass LOLBins payload obfuscation).
• Hands-on experience with Microsoft Sentinel authoring KQL detection rules building analytic workbooks and configuring SOAR playbooks.
• Familiarity with AI/LLM-assisted offensive security tooling (e.g. tools leveraging large language models for reconnaissance payload generation or automated exploitation workflows); willingness to evaluate and operationalize emerging tools in this space.
• Strong knowledge of Active Directory attack paths Windows and Linux internals and common enterprise network protocols (Kerberos LDAP SMB DNS).
• Experience with scripting and automation (Python PowerShell or Bash) to support both offensive tooling and detection engineering.
• Familiarity with cloud environments (Azure preferred given Microsoft stack) and their associated threat models.

Additional Information :

• Highly responsive energetic and enthusiastic.
• Strong analytical skills attention to detail and ability to work in a high-pressure environment.
• Highly responsive energetic and enthusiastic.
• Strong analytical skills attention to detail and ability to work in a high-pressure environment.
• Capable of prioritizing tasks and meeting critical deadlines.
• Ready to work extended hours when required.
• Can work independently and report to the CISO.
• Excellent judgment attention to detail.
• Solution and results oriented.
• Team player with an open non-political style and a high level of personal integrity

Remote Work :

No

Employment Type :

Full-time