Enterprise Cybersecurity Strategist

Job Title: Enterprise Cybersecurity Strategist

This is a highly sought-after position for a seasoned cybersecurity professional who can design and implement a modern security strategy to safeguard the company's technology landscape.

The ideal candidate will be responsible for shaping the company's cybersecurity architecture and engineering strategies to maintain its leading edge posture. This role oversees cybersecurity engineering, architecture, exposure/vulnerability management, and identity security functions focused on delivering security solutions, projects, and programs that drive enterprise cyber resilience and secure business growth.

Key Responsibilities:

• Cybersecurity Strategy & Solutioning: Develop and lead the strategy for modernizing the company's security stack, ensuring architecture stays current with evolving technologies and threats. Manage-

• Spearhead Strategic Cybersecurity Projects: Lead strategic cybersecurity projects across network security, endpoint security, cloud security, and identity security, leveraging advanced technologies like SentinelOne, Tenable, Zscaler, SailPoint, and Orca.
• Drive Security Solutioning, Engineering, and Project Implementations: Drive security solutioning, engineering, and project implementations to mitigate risk and enhance security resilience.
• Define and Maintain Security Standards: Define and maintain security standards, handling exceptions across various technology types and ensuring consistent risk mitigation.
• Conduct Proofs of Concept (POCs): Conduct POCs to evaluate and implement emerging security solutions.

• Security Architecture & Engineering: Oversee cybersecurity engineering and architecture to deliver secure, scalable, and resilient solutions across the enterprise and all business functions.

• Audit and Document Robust Security Solutions: Architect and document robust security solutions for critical corporate infrastructure, cloud environments, and customer-facing platforms.
• Deploy and Configure Security Solutions: Oversee the deployment and configuration of security solutions including but not limited to next-generation firewalls, EDR/XDR, disk encryption, data security posture management & DLP solutions, and advanced cloud security management solutions (AWS, GCP, Azure, OCI).
• Maintain Security Architecture Review Program: Maintain a comprehensive Security Architecture Review program for new and existing technologies, ensuring alignment with industry best practices and regulatory standards.

• Vulnerability & Exposure Management: Direct/Oversee the Vulnerability Assessment and Penetration Testing (VAPT) program, ensuring that the program continuously assesses and mitigates security vulnerabilities and exposures across the organization's technology estate.
• Manage Vulnerability Assessments: Lead a comprehensive Security Vulnerability Management Program, overseeing Tenable project deployments, and operational processes for managing vulnerabilities in workstations, servers, and applications.
• Execute Security Assessments: Execute security assessments for 400+ applications, ensuring secure SDLC practices across the development lifecycle.
• Manage Network Security, Cloud Security, and External Attack Surface Vulnerability Assessments: Manage network security, cloud security, and external attack surface vulnerability assessments using tools like Orca, Cycognito, BitSight and others.
• Conduct Internal and External Penetration Tests: Conduct internal and external penetration tests, simulating attacks to proactively identify and address security gaps.

• Identity Governance & Administration: Direct the Identity & Access Management program, enforcing policies, controls, and governance that protects access to critical systems and data.

• Deploy and Manage Identity Governance Solution: Oversee the deployment and management of the SailPoint Identity Governance solution, ensuring access is governed based on roles, levels, and lines of business.
• Implement MFA: Drive MFA implementation across the organization, along with secure Active Directory configuration and Privileged Access Management (PAM) for high-value admin accounts.

A seasoned security engineering leader capable of designing and executing a modern security strategy, managing complex security initiatives, and ensuring resilient protection across the enterprise technology landscape is required for this role.