The Cyber Security Lead holds the key responsibility of safeguarding the company's vital infrastructure, intellectual assets, and customer information from evolving cyber threats, ensuring uninterrupted operations. You will adopt a proactive stance in constructing, implementing, and managing our Cyber capabilities to bolster our defences, utilizing innovative and state-of-the-art cyber technologies.
As a Cyber Security Lead you will be managing cyber threats, detecting and preventing real-time attacks promptly, and swiftly addressing them, integrated with advanced artificial intelligence and machine learning. Moreover, you will harness Cyber DevOps automations to expedite deployment and mitigate threats rapidly, guaranteeing the resilience of our Operational Technology (OT), IT, and digital infrastructure amidst emerging challenges.
Key Responsibilities:
Technical Expertise
* Lead the design and implementation of Cyber capabilities for IT and OT systems, aligning with strategic goals and addressing evolving threat landscapes.
* Deploy and manage advanced tools, including Fortinet Firewalls, SIEM, EDR solutions (e.g., Crowdstrike), PAM, proxy services, IPSec VPNs, and DDOS protection.
* Engineer and automate security solutions for cloud platforms like AWS and Azure using tools such as Zabbix, ELK, and Ansible.
* Oversee incident response, conduct PIRs and RCAs, and optimize NOC/SOC operations.
* Proficient in vulnerability management, malware tools, and comprehensive threat detection strategies.
* Develop AI-driven reporting structures and integrate agile and DevOps practices for scalable, proactive security solutions.
Strategic:
* Collaborate within the wider team to drive automation and data mining in support of cyber goals and the company's digitization transformation.
* Develop and execute the cyber roadmap for platform development and threat mitigation, in alignment with the unit’s cyber vision and strategy.
* Continuously enhance professional cyber skills and awareness to stay ahead of cyber threats.
* Lead complex technical deliverables, ensuring timely and budget-compliant completion.
* Work autonomously within a clear framework of accountability.
* Take substantial personal responsibility and autonomy in role execution.
Desirable but not essential:
* Familiarity with policy frameworks and regulatory landscapes such as NERC CIP, NIST, NIS2, GDPR, EPCIP, etc.
* Knowledge of virtualization technologies including Docker, Kubernetes, Linux, etc.
* Experience with host-based security products and methodologies (e.g., threat detection, end-user detection and response, micro-segmentation, zero trust).
* Exposure to ITIL environments or structured platform management.
* Possession of professional certifications such as CISSP, CISM, CCNP, CCIE, AWS Certified Security, etc.