Enhanced DV Cyber Security Lead

Active eDV REQUIRED

Key Responsibilities

• Lead the design, configuration, and delivery of SIEM, SOAR, and XDR platforms (e.g., Microsoft Sentinel, IBM QRadar, CrowdStrike Falcon).
• Architect and deploy cloud security solutions across Azure and AWS environments.
• Manage and optimise vulnerability management tools (e.g., Tenable.SC, Rapid7, Qualys).
• Support the development and operation of Cyber Security Operations Centres (CSOCs) .
• Conduct threat modelling, risk assessments, and incident response .
• Implement and manage identity and access management (IAM) solutions using SailPoint, OKTA, and BeyondTrust.
• Collaborate with internal teams to ensure compliance with NIST, MITRE ATT&CK, and ISO27001 frameworks.
• Provide mentoring, documentation, and knowledge transfer to junior engineers and SOC analysts.
• Liaise with external vendors, clients, and cross-functional teams to resolve security issues.

Essential Skills & Experience

• Proven experience (10+ years) in Cyber Security Engineering, Architecture, or Operations .
• Strong background in Microsoft Security Stack (Sentinel, Defender, SOAR).
• Hands-on experience with CrowdStrike XDR , Tenable , Rapid7 , Qualys , and ForcePoint .
• Deep understanding of Cisco, Check Point, and Juniper network security.
• Expertise in cloud security (Azure & AWS) .
• Demonstrated success leading or building CSOCs or security programmes .
• Strong documentation and design skills (HLD/LLD).
• Excellent communication, stakeholder management, and project leadership.

Certifications (Highly Desirable)

• CISM – Certified Information Security Manager
• Microsoft Certified: Azure Security Engineer
• CCNP / CCIE (Security / R&S)
• CCSA / CCSE (Checkpoint)
• JNCIA (Juniper)
• CEH – Certified Ethical Hacker