Cybersecurity Solutions Deployment SME

Job Description Job Description: Cybersecurity Solutions Deployment SME (Contract) Position Title: Subject Matter Expert (SME) – Cybersecurity Solutions Deployment Contract Duration: 6 – 12 months (BIAL reserves the right to extend the duration based on project requirements with 2 months’ notice) Location: BIAL (On-site) Reporting To: VP – Information Security Job Purpose: The Cybersecurity Solutions Deployment SME will lead the successful implementation of critical cybersecurity solutions, including Cloud-Native Application Protection Platform (CNAPP), Breach and Attack Simulation (BAS), and Secure Access Service Edge (SASE). The SME will provide expert guidance, ensure adherence to timelines, align with organizational objectives, and facilitate seamless project execution through collaboration with internal and external stakeholders. Key Accountabilities and Responsibilities: Technical Deployment Responsibilities: Cloud-Native Application Protection Platform (CNAPP): Assess and document the organization’s cloud environment to determine readiness for CNAPP integration. Configure and deploy CNAPP solutions to provide cloud workload protection, compliance, and visibility. Conduct validation tests to ensure accurate reporting of vulnerabilities, misconfigurations, and compliance gaps. Secure Access Service Edge (SASE): Oversee the deployment of SASE components, including zero-trust network access (ZTNA), secure web gateways (SWG), and public and private access. Ensure integration with existing infrastructure, such as identity and access management (IAM) systems and endpoint security tools. Optimize SASE configurations for scalability, performance, and compliance. Cyber Resiliency/Immutable Storage: Lead the deployment of immutable storage solutions to enhance data integrity and cyber resiliency. Design and implement backup and recovery strategies that leverage immutable storage for critical data. Collaborate with IT and cybersecurity teams to integrate immutable storage into existing workflows and disaster recovery processes. Ensure compliance with best practices and organizational policies for data protection and availability. Perform validation tests to ensure immutability and accessibility of stored data during potential cyber incidents. SIEM, SOAR and UEBA: Platform Installation and Baseline Configuration: Deploy and configure the SIEM, SOAR, and UEBA components across primary and secondary environments, ensuring adherence to security hardening guidelines, redundancy, and scalability best practices. Data Source Integration and Normalization: Onboard and validate ingestion from prioritized log sources (e.g., firewalls, servers, EDR, cloud services, identity systems) ensuring parsing, normalization, and enrichment are correctly mapped for analytics and correlation. Use Case and Playbook Development: Implement an initial set of SIEM detection rules, SOAR automation playbooks, and UEBA baselines aligned to critical business risks, MITRE ATT&CK coverage, and compliance requirements. Monitoring, Alerting, and Health Dashboards: Configure monitoring and operational dashboards for log ingestion health, alert fidelity, SOAR automation execution, and UEBA anomaly scores to support MSSP oversight and reporting needs. Knowledge Transfer and Operational Handover: Provide detailed runbooks, configuration documentation, operational workflows, and conduct knowledge transfer sessions to the MSSP to ensure a seamless transition for day-to-day SOC operations. Project Management Office (PMO) Activities: Develop and maintain comprehensive project plans, outlining milestones, deliverables, resource allocation, and timelines for CNAPP, BAS, cyber resiliency/ immutable storage and SASE deployments. Establish a regular cadence of project status reviews with stakeholders to track progress, identify risks, and ensure alignment with organizational objectives. Coordinate with internal teams, vendors, and third-party implementation partners to meet project goals. Prepare detailed documentation, including deployment plans, training materials, and post-implementation guidelines. Conduct post-project reviews to assess outcomes, lessons learned, and opportunities for improvement. Key Deliverables: Deployment and configuration of CNAPP, SIEM+SOAR+UEBA, cyber resiliency/ immutable storage and SASE solutions to meet organizational requirements. Comprehensive project plans and progress reports. Post-deployment validation reports and user training sessions. Risk assessments and mitigation strategies for project implementation. Recommendations for future-proofing cybersecurity investments. Knowledge, Skills, and Experience Required: Technical Skills: Expertise in deploying CNAPP solutions such as SysDig, Wiz, or Sentinel One (Ping Safe). SSE (Secure Service Edge) solutions like Zscaler, Cisco, Microsoft or Netskope. Cyber resiliency/ immutable storage like Commvault, Veeam, Cohesity, or Rubrik. Moden converged SIEM+SOAR+UEBA platforms like Splunk, Securonix, LogRythm, QRadar, etc. Strong understanding of cloud security frameworks, zero-trust architectures, and compliance requirements (e.g., ISO 27001, NIST CSF). Project Management Skills: Proficiency in project management tools (e.g., MS Project). Experience managing multi-vendor and cross-functional team projects. Ability to create detailed timelines, resource plans, and risk mitigation strategies. Soft Skills: Excellent communication skills for stakeholder engagement, reporting, and training. Problem-solving aptitude to address technical and organizational challenges. Strong organizational skills and attention to detail. Experience: Minimum 8 years of experience in cybersecurity, with 5 years specializing in deploying enterprise-grade solutions. Proven track record of successfully managing and completing complex cybersecurity projects. Relevant certifications (e.g., vendor/ OEM specific certifications, CISSP, CCSP, PMP, CISM) are preferred. Financial and Non-Financial Dimensions: Financial Impact: NA Non-Financial Impact: Enhance organizational security posture, ensure compliance, and strengthen resilience against threats. Operating Network: Internal: Cybersecurity Teams, ICT Operations Teams. External: BIAL partners, vendors/ OEMs, and third-party implementation partners. Check Your Resume for Match Upload your resume and our tool will compare it to the requirements for this job like recruiters do.