Cyber Security Manager

●    Monitor security alerts and respond to incidents using SIEM, EDR, and XDR solutions.
●    Perform threat hunting and detect lateral movement across enterprise networks.
●    Investigate security breaches and recommend corrective actions.
●    Manage and enhance SOC processes for proactive defense.
Vulnerability Management & Compliance:
●    Conduct regular vulnerability assessments and penetration testing.
●    Ensure compliance with frameworks such as ISO 27001, NIST, CIS, GDPR, HIPAA.
●    Implement and monitor secure configurations for cloud (AWS, Azure), endpoint, and network security.
Identity & Access Management (IAM):
●    Manage IAM policies, Azure AD, SSO, MFA, and Privileged Access Management (PAM).
●    Assess and optimize RBAC (Role-Based Access Control) implementations.
Cloud & DevSecOps Security:
●    Secure CI/CD pipelines, container security (Docker, Kubernetes), and cloud workloads.
●    Implement security controls in AWS, Azure, and hybrid cloud environments.
Incident Response & Forensics:
●    Develop and execute Incident Response Plans (IRP).
●    Conduct root cause analysis, impact analysis, and forensics for cyber incidents.
Security Architecture & Engineering:
●    Design and implement security controls across networks, endpoints, and cloud environments.
●    Conduct secure architecture reviews for new technologies and integrations.
Risk Management & Governance:
●    Conduct risk assessments and develop risk treatment plans.
●    Develop and enforce security policies, standards, and best practices.
Required Skills & Qualifications:
✅ 8-10 years of hands-on experience in cybersecurity, SOC, incident response, and threat management.
✅ Strong knowledge of SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender ATP).
✅ Experience with cloud security (AWS/Azure/GCP), WAF, and API security.
✅ Proficiency in firewall, IDS/IPS, and network security monitoring tools.
✅ Strong understanding of Active Directory, Azure AD, IAM, and PAM solutions.
✅ Familiarity with DevSecOps tools (SAST, DAST, IAC security).
✅ Certifications preferred: CISSP, CISM, CEH, OSCP, AWS Security Specialty, Azure Security Engineer.
✅ Excellent analytical, problem-solving, and communication skills.
Preferred Experience:
●    Experience in OT Security (for energy, oil & gas, or manufacturing environments).
●    Knowledge of zero trust architecture and micro-segmentation.
●    Experience in Red Teaming, Purple Teaming, and MITRE ATT&CK frameworks