Responsibilities
- Lead advanced threat detection, investigation, and incident response across hybrid environments, including root cause analysis and process improvements.
- Design and manage identity and access controls, covering user lifecycle, role-based permissions, privileged access, and secure authentication.
- Conduct thorough vulnerability assessments, assess risk levels, and collaborate with stakeholders to implement prioritized remediation strategies.
- Act as technical lead for MDR, SIEM, and third-party security services to enhance detection accuracy and response effectiveness.
- Automate security workflows to improve consistency, reduce manual effort, and support compliance requirements.
- Align security controls with regulatory standards such as NIS2, ISO 27001, and GDPR.
- Identify cybersecurity risks and communicate findings to relevant enterprise teams.
- Integrate physical security systems like access badges and CCTV with cybersecurity and identity frameworks.
- Create and maintain security policies, procedures, and system documentation.
- Develop meaningful security metrics to assess and improve control performance.
- Lead initiatives to strengthen endpoint security, including EDR configuration and device policy enforcement.
- Design and enforce secure access protocols for remote users and third parties, applying least-privilege principles.
- Perform routine security testing on applications, networks, and infrastructure.
- Collaborate on business continuity and disaster recovery planning to embed security requirements.
- Maintain up-to-date knowledge of evolving threats, technologies, and defensive practices.
- Carry out additional duties as assigned by management.
Work Arrangement
Remote (Worldwide)
Work Arrangement
Remote (Worldwide)
