Senior Cyber Security Engineer

The Senior Cybersecurity Engineer is responsible for leading the design, implementation, and continuous improvement of the company’s cybersecurity operations framework. This position plays a key leadership role within the Cybersecurity Operations & Governance team, overseeing all aspects of monitoring, alerting, auditing, and containment, while ensuring the alignment of cybersecurity policies with business objectives and international standards.The Senior Cybersecurity Engineer acts as a subject matter expert in cybersecurity governance, incident response, and tool orchestration, providing strategic guidance to both management and technical teams. This role ensures that all systems, endpoints, and networks are monitored, controlled, and secured under a unified policy framework, maintaining resilience and compliance across the organization.Essential SkillsAdvanced technical expertise in cybersecurity operations, risk management, and incident response.Proven experience in defining and implementing security policies, playbooks, and governance frameworks.Deep understanding of SIEM, DLP, EDR, and forensic analysis tools for enterprise environments.Strong leadership and mentorship skills to guide mid-level and junior engineers.Exceptional analytical, decision-making, and problem-solving abilities.Excellent communication skills for presenting complex security information to executive stakeholders.Strategic mindset with hands-on technical capability to drive incident response and compliance initiatives.ResponsibilitiesCybersecurity Strategy and GovernanceDesign, implement, and maintain the overall Security Operations Framework (SOC) to ensure 24/7 protection and monitoring of the company’s assets.Define and enforce cybersecurity policies, procedures, and governance structures aligned with frameworks such as ISO 27001, NIST, and SOC2.Lead the creation and maintenance of playbooks, escalation paths, and incident response workflows.Collaborate with executive leadership to align cybersecurity goals with organizational risk tolerance and business continuity objectives.Maintain visibility and control across all digital operations, ensuring adherence to compliance and internal audit requirements.Monitoring, Alerting, and Incident ResponseOversee real-time monitoring of all company activity, including user behavior, endpoints, and network traffic, through centralized SIEM dashboards.Supervise alert triage, analysis, and correlation to detect and prioritize potential threats.Direct containment and remediation activities for confirmed security incidents, including isolating affected workstations or servers.Perform forensic investigations and root-cause analyses to identify vulnerabilities and prevent recurrence.Manage post-incident reviews and ensure continuous improvement of detection and response processes.Audit and Compliance OversightLead scheduled security audits across systems, applications, and endpoints to validate compliance with internal and external requirements.Review and approve audit findings, track remediation efforts, and ensure timely closure of gaps.Evaluate existing controls and recommend enhancements to strengthen security posture.Collaborate with IT, Legal, and Compliance teams to ensure adherence to data protection and privacy regulations.Security Tool Management and OptimizationControl and oversee the configuration, maintenance, and integration of all cybersecurity tools.Ensure interoperability among platforms to achieve unified monitoring and automated alerting.Assess tool performance, identify optimization opportunities, and lead implementation of new solutions or upgrades.Maintain vendor relationships, licensing compliance, and technical documentation for all security systems.Policy Definition and EnforcementEstablish and maintain company-wide cybersecurity policies covering endpoint management, administrative rights, data retention, and access control.Approve and enforce privilege management strategies under the principle of least privilege.Communicate and ensure adoption of policies through collaboration with IT, HR, and department heads.Review and update policies regularly to adapt to evolving threats and regulatory changes.Leadership and MentoringLead and mentor advanced and junior cybersecurity engineers, fostering skill development and procedural consistency.Serve as escalation point for high-severity incidents and complex investigations.Promote a culture of proactive defense, collaboration, and accountability within the cybersecurity team.Provide input into performance evaluations, training plans, and career development initiatives.Reporting and Executive CommunicationGenerate comprehensive reports on incident trends, audit results, tool performance, and overall security posture.Present monthly and quarterly summaries to the Head of IT and executive stakeholders, highlighting risks, mitigations, and future strategies.Develop metrics and KPIs to measure operational effectiveness and policy compliance.Advise leadership on technology investments, emerging threats, and strategic initiatives in cybersecurity.Additional ResponsibilitiesAny other responsibility established by the manager related to the employee’s knowledge and areas of responsibility.Key Skills and RequirementsEducation:Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or Information Technology.Experience:Minimum of 8 years of experience in cybersecurity operations, architecture, or systems engineering.Demonstrated expertise in leading security teams, defining governance policies, and managing large-scale monitoring environments.Proven experience in incident response, forensic analysis, and security audits.Technical Knowledge:Proficiency in enterprise-grade tools such as Wazuh, FortiMail, Trellix, Elastic Stack, Teramind, and Ivanti.Strong command of SIEM and DLP solutions, and integration with EDR and firewall technologies.Deep understanding of vulnerability management, privilege control, and access governance.Working knowledge of scripting and automation (Python, PowerShell, or Bash).Awareness of current threat landscapes, security trends, and emerging technologies.Excellent communication skills in English and strong report-writing abilities.Certifications (Preferred):CISSP, CISM, OSCP, ISO 27001, or GIAC (GCIH/GCIA) certifications.CompetencesLeadership and MentorshipStrategic ThinkingAnalytical Decision-MakingRisk ManagementCollaborationInnovationWe are an equal-opportunity employer and encourage applications from individuals of all backgrounds and experiences.