Cybersecurity Expert

We are seeking an exceptional Chief Information Security Architect to lead the design, implementation, and management of our organization's security architecture. The ideal candidate will be responsible for securing IT infrastructure, conducting risk assessments, ensuring compliance, and implementing Microsoft security layers to strengthen our security posture.

• Design, configure, and manage firewalls (Palo Alto, Fortinet, Cisco ASA, Check Point) to safeguard our digital assets.
• Deploy and maintain Web Application Firewalls (WAF) for web security (Cloudflare, Imperva, AWS WAF) to protect against cyber threats.
• Implement Endpoint Detection & Response (EDR) solutions like Microsoft Defender for Endpoint, CrowdStrike, SentinelOne to detect and respond to endpoint security incidents.
• Conduct regular firewall rule audits, optimize configurations, and enforce Zero Trust principles to ensure robust security measures.

• Configure and manage Microsoft Defender for Office 365 to protect against phishing, malware, and email threats to safeguard our users.
• Implement Safe Links, Safe Attachments, and Anti-Phishing policies to prevent malicious emails from reaching inboxes.
• Monitor and respond to email security alerts in Microsoft Security Portal to ensure timely incident response.
• Conduct email security threat hunting using Defender for O365 and advanced hunting queries to identify potential security risks.

• Deploy and manage Microsoft Defender for Endpoint (MDE) to protect corporate devices and enforce attack surface reduction (ASR) rules for endpoint protection.
• Configure endpoint compliance policies using Microsoft Intune to ensure device compliance with organizational policies.
• Implement DLP (Data Loss Prevention) policies to prevent data exfiltration and ensure data confidentiality.

• Implement and monitor Microsoft Purview Compliance Manager for risk assessment and enforcement of information protection and encryption policies.
• Enforce Conditional Access Policies in Microsoft Entra ID to control user access to sensitive resources.
• Ensure compliance with industry standards like ISO 27001, NIST, CIS, and GDPR to maintain a secure and compliant environment.

• Monitor dark web forums, marketplaces, and underground networks for stolen credentials, data leaks, and insider threats to stay ahead of potential security risks.
• Implement dark web intelligence tools like Recorded Future, Digital Shadows, or Microsoft Defender Threat Intelligence to gather threat intelligence and inform security decisions.
• Collaborate with threat intelligence platforms to detect and respond to brand impersonation, phishing sites, and fraudulent domains to protect our brand reputation.
• Work closely with legal and compliance teams to enforce takedowns of malicious content and ensure compliance with regulatory requirements.

• Investigate fraud incidents, phishing attempts, and business email compromise (BEC) to identify root causes and implement corrective actions.
• Conduct forensic analysis on compromised endpoints, servers, and email accounts to understand the scope of the incident and recommend remediation steps.
• Develop and implement threat intelligence and threat hunting processes to stay ahead of emerging threats and improve overall security posture.
• Collaborate with SOC teams for incident response and mitigation to ensure timely and effective response to security incidents.

• Perform Vulnerability Assessments & Penetration Testing (VAPT) on infrastructure, applications, and cloud environments to identify vulnerabilities and prioritize remediation efforts.
• Implement and manage intrusion detection/prevention systems (IDS/IPS) to detect and prevent unauthorized access to our digital assets.
• Monitor, analyze, and mitigate vulnerabilities from external and internal security scans to ensure ongoing security monitoring and improvement.
• Work with teams to remediate vulnerabilities and harden IT assets to ensure a secure and compliant environment.

• Develop and enforce security policies, standards, and procedures to ensure ongoing security governance and compliance.
• Implement Zero Trust Architecture and IAM policies to ensure least privilege access and role-based access control.
• Conduct security awareness training and phishing simulations to educate users on security best practices and phishing risks.
• Ensure compliance with industry standards like ISO 27001, NIST, CIS, PCI-DSS, GDPR, and other relevant standards to maintain a secure and compliant environment.