Senior Engineer Cybersecurity

About The Position

Requirements

• Experience and strong understanding of core security technologies: firewalls, endpoint protection, SIEM, DLP, vulnerability scanners, identity and access management, etc.
• Technical proficiency with Windows, Linux, and networking concepts; scripting or automation (e.g., PowerShell, Python) a plus.
• Expertise in designing secure networks, systems and application architectures
• Familiarity with cloud security principles and tools (Microsoft Azure, Microsoft 365)
• Experience with regulatory and compliance requirements (e.g., ISO 27001, SOC 2, GDPR, PCI, NIST CSF)
• Knowledge of common cyberattack vectors, threat detection, and mitigation strategies
• Strong written and verbal communication skills in English; ability to convey technical content to non-technical stakeholders
• Self-motivated and able to work independently in a dynamic and distributed team environment
• Bachelor’s degree in Computer Science, Information Security, or a related field OR equivalent experience preferred
• 7+ years of experience in Information Security
• Professional certifications (e.g., CISSP, CISM, CEH, GIAC, or similar) preferred

Nice To Haves

• Experience working in a global organization with third-party service providers is a plus

Responsibilities

• Security Engineering & Operations Lead the implementation and administration of information security tools and services, including SIEM, EDR, firewalls, vulnerability scanners, and IAM systems
• Design, configure, and manage secure infrastructure and applications across on-prem and cloud environments (preferably Azure/M365 and OCI)
• Lead vulnerability management efforts and remediation follow-up across systems and applications
• Investigate and develop technical solutions and automation to improve security operations and reduce manual effort
• Monitor, triage, and respond to security alerts and incidents; lead incident response efforts and maintain documentation
• Support the goals of the information security program and help carry out information security strategy
• Governance, Risk & Compliance (GRC) Lead or support security-related audits, assessments, and evidence collection for internal and external stakeholders
• Develop and report on meaningful and actionable information security metrics that support strategy
• Manage vendors and third party risk management by coordinating and overseeing work performed by vendors including all contracted professional services
• Support the organization's compliance with internal policies and external requirements (e.g., GDPR, PCI, ISO 27001).
• Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
• In collaboration with the Information Security team, maintain and improve the information security policy framework, standard operating procedures, and internal controls
• Conduct or support third-party security reviews and vendor risk assessments as needed
• Security Awareness & Collaboration Develop and deliver security awareness training and communications for employees
• Act as information security subject matter expert including mentoring and cross-functional advising
• Collaborate with cross-functional teams on secure architecture, project reviews, and IT initiatives

Benefits

• Additional benefits, such as health & wellness, performance bonuses, product discounts, holidays, paid time off, etc. may also be offered in accordance with our plans.