Cyber Security Strategist Position

We are seeking a highly experienced and dynamic Cyber Security Manager to lead our Offensive (Red Team) and Defensive (Blue Team) security teams. This role involves developing, implementing, and overseeing the organization's cybersecurity strategy to protect assets and data from evolving threats. The ideal candidate will have a strong technical background, hands-on experience in offensive or defensive security, proven leadership skills, and a deep understanding of security best practices and compliance frameworks.

1. Develop and Implement Cybersecurity Strategies: Develop and implement cybersecurity strategies that align with business objectives, covering both offensive and defensive initiatives.
2. Lead Security Teams: Lead, mentor, and manage both security teams, fostering collaboration and professional growth.
3. Offensive Security Operations: Oversee penetration testing, vulnerability assessments, and red team exercises, ensuring actionable remediation.
4. Defensive Security Operations: Manage security monitoring, incident response, and threat intelligence capabilities.
5. Security Tooling & Technology Management: Oversee security tools and technologies, ensuring optimal use and integration.
6. Secure Development Lifecycle (SDLC) Integration: Promote secure coding practices and security integration during software development.
7. Threat Modeling & Risk Assessment: Lead threat modeling exercises and identify security risks with appropriate controls.
8. Vulnerability Management: Maintain a vulnerability management program for applications and infrastructure.
9. Incident Response Management: Lead investigations and responses to security incidents, refining response plans.
10. Security Code Reviews & Architecture Guidance: Conduct security code reviews and advise on secure application architecture.
11. Compliance & Governance: Ensure adherence to ISO 27001, PCI DSS, and other relevant standards.
12. Reporting & Communication: Prepare security posture reports for technical and executive audiences.
13. Security Awareness & Training: Promote security awareness and develop training programs.

• Bachelor's degree in Computer Science, Information Security, or related field. Relevant certifications (e.g., CISSP, CISM, OSCP, CEH) are highly desirable.
• Minimum of 5 years of progressive cybersecurity experience.
• Hands-on experience with offensive security tools (e.g., Metasploit, Cobalt Strike, Nessus, Burp Suite) and defensive tools (e.g., Splunk, ELK, Sentinel, EDR, IDS/IPS, threat intelligence platforms).
• Proven experience implementing ISO 27001 and PCI DSS standards.
• Strong understanding of network security principles, protocols, and technologies.
• Excellent analytical, problem-solving, and decision-making skills.
• Leadership and team management experience, with a track record of building high-performing teams.
• Excellent communication and interpersonal skills.
• Experience with cloud security platforms (AWS, Azure, GCP).
• Familiarity with security automation and orchestration (SOAR) tools.
• Experience with threat intelligence analysis and integration.

This is a challenging and rewarding opportunity for an experienced cybersecurity professional to take on a leadership role and make a significant impact on the organization's security posture.

If you are a motivated and talented individual with a passion for cybersecurity, we encourage you to apply for this exciting opportunity.