Enhanced DV Cyber Security Lead

Active eDV REQUIRED

Key Responsibilities

• Lead the design, configuration, and delivery of SIEM, SOAR, and XDR platforms (eg, Microsoft Sentinel, IBM QRadar, CrowdStrike Falcon).
• Architect and deploy cloud security solutions across Azure and AWS environments.
• Manage and optimise vulnerability management tools (eg, Tenable.SC, Rapid7, Qualys).
• Support the development and operation of Cyber Security Operations Centres (CSOCs).
• Conduct threat modelling, risk assessments, and incident response.
• Implement and manage identity and access management (IAM) solutions using SailPoint, OKTA, and BeyondTrust.
• Collaborate with internal teams to ensure compliance with NIST, MITRE ATT&CK, and ISO27001 frameworks.
• Provide mentoring, documentation, and knowledge transfer to junior engineers and SOC analysts.
• Liaise with external vendors, clients, and cross-functional teams to resolve security issues.

Essential Skills & Experience

• Proven experience (10+ years) in Cyber Security Engineering, Architecture, or Operations.
• Strong background in Microsoft Security Stack (Sentinel, Defender, SOAR).
• Hands-on experience with CrowdStrike XDR, Tenable, Rapid7, Qualys, and ForcePoint.
• Deep understanding of Cisco, Check Point, and Juniper network security.
• Expertise in cloud security (Azure & AWS).
• Demonstrated success leading or building CSOCs or security programmes.
• Strong documentation and design skills (HLD/LLD).
• Excellent communication, stakeholder management, and project leadership.

Certifications (Highly Desirable)

• CISM - Certified Information Security Manager
• Microsoft Certified: Azure Security Engineer
• CCNP/CCIE (Security/R&S)
• CCSA/CCSE (Checkpoint)
• JNCIA (Juniper)
• CEH - Certified Ethical Hacker