Cyber Security Leadership Role

We are seeking an accomplished and dynamic leader to oversee our Cyber Security operations. This individual will be responsible for leading both our Offensive (Red Team) and Defensive (Blue Team) security teams, fostering a collaborative environment that promotes high performance and drives business objectives.

This is an exceptional opportunity for a highly skilled professional with a strong technical background in offensive or defensive security, combined with proven leadership abilities and a deep understanding of security best practices and compliance frameworks.

The ideal candidate will have hands-on experience with penetration testing frameworks, vulnerability scanners, and exploitation methodologies, as well as SIEM platforms, EDR solutions, intrusion detection/prevention systems, and threat intelligence platforms.

The successful candidate will develop and implement the overarching cybersecurity strategy for the organization, encompassing both offensive and defensive security initiatives and aligning them with business goals. They will also lead team management and development, overseeing the selection, implementation, and management of comprehensive security tools and technologies.

This includes secure coding practices and security integration throughout the software development lifecycle, collaborating closely with development teams to build secure applications by design.

The role requires a strong understanding of network security principles, protocols, and technologies, as well as excellent analytical, problem-solving, and decision-making skills. The ideal candidate will also possess demonstrated leadership and team management abilities, with experience in building and motivating high-performing teams.

• Cybersecurity Strategy and Leadership:
  • Develop and implement the overarching cybersecurity strategy for the organization.
  • Lead team management and development, including defining team objectives, assigning responsibilities, and facilitating professional growth.
• Offensive Security Operations:
  • Oversee and guide the planning and execution of penetration testing, vulnerability assessments, and red team exercises.
• Defensive Security Operations:
  • Manage and enhance the organization's security monitoring, incident response, and threat intelligence capabilities.
• Security Tooling & Technology Management:
  • Select, implement, and manage comprehensive security tools and technologies.
• Secure Development Lifecycle (SDLC) Integration:
  • Champion and enforce secure coding practices and security integration throughout the software development lifecycle.
• Threat Modeling & Risk Assessment:
  • Lead and participate in threat modeling exercises for applications and infrastructure.
• Vulnerability Management:
  • Develop and maintain a comprehensive vulnerability management program.
• Incident Response Management:
  • Collaborate with the incident response team and provide leadership in investigating and responding to security incidents.
• Security Code Reviews & Architecture Guidance:
  • Lead and guide security code reviews to analyze and assess the security posture of application code.
• Compliance & Governance:
  • Drive the implementation and maintenance of ISO 27001 and PCI DSS compliance frameworks.
• Reporting & Communication:
  • Develop and present clear and concise reports on the security posture of applications and infrastructure.
• Security Awareness & Training:
  • Promote a strong security awareness culture within the organization.
• Budget Management:
  • Manage the cybersecurity budget for both offensive and defensive security initiatives.

• A bachelor's degree in Computer Science, Information Security, or a related field.
• Relevant security certifications (e.g., CISSP, CISM, OSCP, CEH) are highly desirable.
• A minimum of 5 years of progressive experience in cybersecurity roles.
• Hands-on experience with penetration testing frameworks, vulnerability scanners, and exploitation methodologies.
• Experience with SIEM platforms, EDR solutions, intrusion detection/prevention systems, and threat intelligence platforms.
• Proven experience in implementing and maintaining ISO 27001 and PCI DSS standards.
• Strong understanding of network security principles, protocols, and technologies.
• Excellent analytical, problem-solving, and decision-making skills.
• Demonstrated leadership and team management abilities, with experience in building and motivating high-performing teams.
• Excellent communication, presentation, and interpersonal skills.
• Experience with cloud security platforms.
• Familiarity with security automation and orchestration (SOAR) tools.
• Experience with threat intelligence analysis and integration.