Cybersecurity Strategist

Job Summary

We are seeking an exceptionally skilled Cybersecurity Engineer with 8+ years of experience to join our dynamic cybersecurity team. In this role, you will lead end-to-end security implementation for our clients, ensuring robust protection of IT infrastructure, systems, and networks.

Key Responsibilities

• Conduct regular security assessments, penetration testing, and vulnerability scanning for networks, systems, and applications.
• Identify, evaluate, and proactively mitigate potential security threats and vulnerabilities.
• Perform comprehensive risk analysis and prioritize remediation activities to strengthen security posture.

Incident Response & Threat Detection

• Lead incident response during security breaches or cyberattacks.
• Develop and maintain incident response plans for swift and effective containment, investigation, and recovery.
• Implement and manage real-time threat detection systems to monitor and mitigate security incidents.

Security Architecture & Implementation

• Design and implement secure network architectures, cloud infrastructures, and endpoint security solutions.
• Deploy and manage security technologies such as firewalls, IDS/IPS, encryption tools, and endpoint protection platforms.
• Ensure compliance with industry security standards and frameworks (e.g., NIST, ISO 27001, SOC2, PCI DSS).

Security Best Practices & Policy Development

• Work closely with IT, DevOps, and engineering teams to enforce security policies and procedures.
• Develop security guidelines and training materials for internal teams and clients.
• Promote adherence to security best practices across all business units and organizations.

Compliance & Regulatory Requirements

• Lead efforts to maintain compliance with GDPR, HIPAA, PCI DSS, and other applicable industry regulations.
• Prepare and maintain security documentation, reports, and audit records to ensure regulatory compliance.

Security Implementation & Client Engagement

Directly manage security implementation for client projects, ensuring seamless security integration.

Collaborate with client teams to assess security needs and deploy customized security solutions.

Conduct security training sessions, workshops, and knowledge-sharing activities for internal and external stakeholders.

Desired Candidate Profile

Education & Certifications

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
• Relevant cybersecurity certifications, such as CISSP, CISM, CEH, CompTIA Security+, AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer (preferred for cloud security expertise).

Experience

• 8+ years of experience in cybersecurity (exceptional candidates with 6+ years and a proven track record may be considered).
• Hands-on experience with a wide range of security tools, including SIEM solutions, IDS/IPS, firewalls, endpoint security, threat intelligence platforms.
• Experience with security frameworks and standards (e.g., NIST, ISO 27001, SOC2, PCI DSS).
• Strong expertise in cloud security (AWS, Azure, Google Cloud) and securing multi-cloud environments.
• Direct experience in implementing security solutions for clients, not just advisory roles.

Technical Skills

• Strong knowledge of networking protocols (TCP/IP, DNS, VPNs, SSL/TLS, IPSec).
• Hands-on experience with penetration testing and vulnerability scanning tools.
• Experience with scripting/automation (Python, Bash, PowerShell) for security operations.

Soft Skills

• Strong analytical and problem-solving abilities.
• Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
• Ability to work under pressure and handle security incidents with professionalism.
• Strong attention to detail, organizational, and time-management skills.

Preferred Qualifications

• Familiarity with MITRE ATT&CK framework and threat intelligence platforms.
• Experience in incident management and forensic analysis.
• Hands-on experience with DevSecOps practices, integrating security into the SDLC.
• Experience with security automation tools, such as Infrastructure-as-Code security and compliance automation.

Why Join Us?

We offer a collaborative work environment with a focus on continuous learning and professional development.

The opportunity to stay ahead of the curve by researching and deploying the latest security innovations.

The chance to work with leading technologies and frameworks in cybersecurity, cloud security, and DevSecOps.

The opportunity to lead security implementations for cutting-edge projects in a growing and innovative company.