Job Description
Job Description: β’ Design, implement, maintain, and continuously improve security controls and capabilities (e.g. IDS/IPS, next-gen firewalls, endpoint protection, SIEM, EDR/XDR, network segmentation, microsegmentation, DLP, WAF, CASB). β’ Perform risk assessments, security reviews, threat modeling, architecture reviews, and security design evaluations for new systems, platforms, and integrations. β’ Lead efforts to detect, analyze, respond to, and remediate security incidents; perform root cause investigations, forensics, and lessons-learned programs. β’ Conduct vulnerability scanning, penetration tests, red/blue team exercises, and ensure remediation tracking and validation. β’ Integrate security into DevOps and CI/CD pipelines (DevSecOps) β e.g. static code analysis (SAST), dynamic / interactive scanning (DAST / IAST), container & cloud security, secrets management. β’ Develop and tune security detection use-cases, alerts, and analytic rules in SIEM / EDR / UEBA / log platforms. β’ Automate repeatable security tasks (e.g. log analytics, threat feed ingestion, alerts triage) using scripting / tooling (Python, PowerShell, etc.). β’ Collaborate cross-functionally with network, systems, application, and cloud teams to embed security controls early in project lifecycles. β’ Maintain and enforce security policies, standards, baselines, and guidelines (aligned with NIST, CIS, ISO 27001, FFIEC, etc.). β’ Mentor and coach junior security engineers, conduct peer reviews, and champion security culture and awareness. β’ Keep current with threat actor techniques, emerging vulnerabilities, security technologies, and industry best practices; propose architectural or tool upgrades. β’ Participate in audits, regulatory requirements (e.g. internal, external, SOX, PCI, FFIEC), and provide evidence and technical support. β’ On-call rotation as part of incident response / escalation. Requirements: β’ Bachelor's degree in Computer Science, Information Security, or a related discipline (or equivalent experience). β’ Minimum of 5-8+ years of experience in information security, with at least 2-3 years in senior or lead-level roles. β’ Hands-on experience across multiple security domains: network security, endpoint security, identity & access management, application security, cloud security, etc. β’ Strong knowledge of security frameworks / standards (e.g. NIST CSF, NIST SP 800-53, CIS Controls, ISO 27001, FFIEC). β’ Experience deploying and configuring security tools: SIEM, EDR, IDS/IPS, WAF, DLP, CASB, vulnerability management platforms. β’ Experience in incident detection / response and forensics. β’ Proficiency in scripting or programming (Python, PowerShell, Bash, etc.) for automation. β’ Familiarity with public cloud environments (AWS, Azure, GCP) and their security controls / tooling. β’ Experience integrating security into CI/CD pipelines and DevSecOps practices. β’ Strong analytical, problem-solving, communication, and stakeholder engagement skills. β’ Professional certifications such as CISSP, CISM, GIAC (GSEC, GCIA, GCIH, etc.), or equivalent are preferred. β’ Experience in highly regulated / financial or banking environments is strongly preferred. Benefits: Apply tot his job