Cyber Security Engineering & Intelligence Lead
Indigo is seeking a Senior Cyber Threat Intelligence & Risk Engineer to define and operationalise our cyber risk profile and CTI strategy. This is a senior practitioner role focused on automation, integration, and process maturity—delivering scalable security outcomes without increasing headcount.
You’ll lead the integration of threat intelligence feeds and vulnerability management tools into our SIEM (Microsoft Sentinel), ensuring comprehensive logging and actionable insights across our environments. You’ll also support the evolution of our MDR, SOC, and penetration testing capabilities, collaborating with cross-functional teams to embed security into every layer of our technology stack.
Key Responsibilities
* Define and maintain Indigo’s cyber risk profile and CTI strategy.
* Integrate CTI feeds into SIEM platforms (e.g., Microsoft Sentinel) and ensure logging coverage across systems.
* Lead deployment of vulnerability management tools (Nessus, AppCheck, MDE, MDI, MDO).
* Drive remediation and patching activities through scalable, process-driven approaches.
* Support the transition to a new MDR and SOC provider.
* Manage third-party penetration testing engagements and integrate findings into our risk posture.
* Collaborate with IT, DevOps, and Cyber teams to embed security across environments.
* Develop automation and scalable processes to support security operations.
About You
You’re a strategic thinker and hands-on practitioner with a passion for cyber resilience. You thrive in dynamic environments and bring a proactive, solutions-focused mindset.
Required Experience
* Proven experience in cyber security engineering, threat intelligence, and SIEM integration.
* Strong understanding of CTI sources and operational use.
* Hands-on experience with Microsoft Sentinel or similar platforms.
* Experience with vulnerability tools (Nessus, AppCheck, Defender suite).
* Familiarity with MDR/SOC operations and third-party service management.
* Demonstrated ability to deliver scalable security solutions through automation.
* Strong stakeholder engagement across technical and non-technical teams.
Key Performance Indicators
* CTI feed coverage and integration accuracy.
* Logging completeness across critical systems.
* Vulnerability remediation rates and time-to-close metrics.
* Successful onboarding of MDR/SOC provider.
* Reduction in repeat penetration test findings.
* Automation and process improvements implemented.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Telecommunications
#J-18808-Ljbffr