Cyber security engineering

Key Responsibilities

In the role of Cyber Security Engineering Associate Director, you'll operate within Product company Cybersecurity group to deliver quality services and solutions that meet both business and IT needs.This is a hands-on technical leadership role providing guidance, definition and design of enterprise-wide security engineering initiatives and leading a small global team of cybersecurity engineers. You'll collaborate with Business, Solution Delivery, Engineering, and Quality and Compliance functions across a global organisation spanning US, UK, Sweden, China, Japan, Poland, Mexico, India and beyond.

Engineer, build, configure, test and implement Cyber Security solutions for the organisation spanning on-premise and third-party collaboration environments with the predominant focus on Network and host/endpoint detection and response technology enablement.

Define principles, and support development of policies, standards and governance covering DevOps, Corporate network connectivity, tooling, ways of working, endpoint protection, shifting hardening processes as far left as possible, network security in collaboration with the network team (including IDS / IPS)

Help define the future state of Cyber Security within the organisation, conduct review and gap analysis between current state and future state including existing measures and controls, and then work to uplift to align to the future state vision, specific to endpoint detection and response capabilities.

Anticipate threats, identify weaknesses, and respond promptly and effectively to possible breaches or areas of concern.

Provide technical leadership and management of security projects and lead a team of security engineers. Collaborate with other teams to develop automation strategies

Essential Experience

Must have large enterprise IT and security experience, ideally with significant host/endpoint detection and response technology and network protection experience, SIEM, IDS/IPS

Able to influence at engineering, architecture, strategic and leadership levels.

Experience and familiarity with a range of automated build and deployment tools

Experience planning, researching and developing security technologies, policies, standards and procedures

Development and Systems Administration experience ideally with process automation and/or configuration management

Security tools administration and auditing across internal and external network and systems

Familiarity with common attack techniques and their remediation/defence including DoS, DDoS, Social engineering, Virus, Malware, Vulnerability exploitation, Phishing & Spear Phishing, Worms, Trojans, Rootkits, Ransomware, XSS, SQL Injection, Remote Command Execution, Session Hijacking, etc.

Solid grasp of security protocols, cryptography, authentication, authorisation and network security implementations

Implement and configure tools to improve our reactive and proactive security posture

Ability to build, configure, test and implement Cyber Security solutions

Ability to follow and adopt systems security engineering frameworks and map controls

Strong network architecture and engineering capabilities

The ability to embed process, governance and security into workflow and technology

Ability to prioritise and validate the threats that really matter