Cyber Security Manager

Confidential Company

Job Summary

As a cybersecurity manager, you’ll develop and oversee the implementation of our firm’s cybersecurity strategies. You will be crucial to protect our company’s digital assets, ensure compliance with security standards, and mitigate risks. You will also make sure our information assets and technologies are adequately protected from current and emerging threats. The role demands a seasoned professional with 12–15 years of core experience in cybersecurity operations, governance, and engineering. Familiarity with IoT security and DevSecOps methodologies is desirable and will be considered a distinct advantage.

 Key Responsibilities

Daily Security Operations:

•                     Administer and optimize cybersecurity solutions including Antivirus (AV), WAF, Email Security Gateways, DLP, MAM (e.g., Intune), PAM, and other security tools.

•                     Handle day-to-day security events, log analysis, and escalation procedures through Incident Response processes.

•                     Coordinate with stakeholders during major security incidents and ensure post-incident reporting and root cause analysis.

•                     Integrate security controls and vulnerability scanning

•                     Manage vulnerabilities & implement security controls, prepare priority vulnerability report and coordinate with cross functional teams.

•                     Plan and deliver regular awareness sessions and workshops across the organization to promote a security-conscious culture.

•                     Conduct phishing simulation campaigns and evaluate employee awareness metrics.

•                     Prepare engaging training material customized for technical and non-technical audiences.

•                     Daily manage security incidents and coordinate with cross functional teams for incident response.

Improvement and optimization:

•                     Fine-tune detection rules, policies, and configurations across all security solutions to reduce false positives and enhance detection accuracy.

•                     Secure cloud workloads on platforms such as Microsoft Azure or AWS by applying industry’s best practices.

•                     Secure IoT/OT environments include asset discovery, segmentation, and access restrictions.

•                     Participate in the design and implementation of new security technologies and tools.

•                     Provide security consultation to IT and business teams for new projects and infrastructure rollouts.

Process & Governance:

•                     Review cloud architecture for compliance with security baselines and organizational policies.

•                     Perform cybersecurity risk assessments and propose mitigation strategies based on risk appetite.

•                     Contribute to ISO 27001 compliance efforts including internal audits, gap assessments, and policy reviews.

•                     Support third-party/vendor security evaluations and ensure secure onboarding processes.