Active eDV REQUIRED
Key Responsibilities
* Lead the design, configuration, and delivery of SIEM, SOAR, and XDR platforms (e.g., Microsoft Sentinel, IBM QRadar, CrowdStrike Falcon).
* Architect and deploy cloud security solutions across Azure and AWS environments.
* Manage and optimise vulnerability management tools (e.g., Tenable.SC, Rapid7, Qualys).
* Support the development and operation of Cyber Security Operations Centres (CSOCs).
* Conduct threat modelling, risk assessments, and incident response.
* Implement and manage identity and access management (IAM) solutions using SailPoint, OKTA, and BeyondTrust.
* Collaborate with internal teams to ensure compliance with NIST, MITRE ATT&CK, and ISO27001 frameworks.
* Provide mentoring, documentation, and knowledge transfer to junior engineers and SOC analysts.
* Liaise with external vendors, clients, and cross-functional teams to resolve security issues.
Essential Skills & Experience
* Proven experience (10+ years) in Cyber Security Engineering, Architecture, or Operations.
* Strong background in Microsoft Security Stack (Sentinel, Defender, SOAR).
* Hands-on experience with CrowdStrike XDR, Tenable, Rapid7, Qualys, and ForcePoint.
* Deep understanding of Cisco, Check Point, and Juniper network security.
* Expertise in cloud security (Azure & AWS).
* Demonstrated success leading or building CSOCs or security programmes.
* Strong documentation and design skills (HLD/LLD).
* Excellent communication, stakeholder management, and project leadership.
Certifications (Highly Desirable)
* CISM – Certified Information Security Manager
* Microsoft Certified: Azure Security Engineer
* CCNP / CCIE (Security / R&S)
* CCSA / CCSE (Checkpoint)
* JNCIA (Juniper)
* CEH – Certified Ethical Hacker