IT Security Manager

We are seeking a seasoned IT Security Engineer with approximately 10 years of experience in cybersecurity, particularly in the design, implementation, and maintenance of security controls across application, platform, and cloud environments. The ideal candidate will have strong technical expertise, hands-on experience with security tools and frameworks, and a proactive mindset to support the organization’s security initiatives.

Key Responsibilities
•    Design, engineering, and maintain security controls across on-premise applications, platform, and cloud environments.
•    Collaborate with application, infrastructure, and DevOps teams to integrate security into the system development lifecycle (SDLC).
•    Conduct security assessments, and security architecture reviews to identify and mitigate risks.
•    Support the deployment and tuning of security tools such as SIEM, EDR, vulnerability scanners, and IAM solutions. 
•    Monitor emerging threats and recommend appropriate mitigation strategies.
•    Assist in incident response activities, including investigation, containment, and remediation.
•    Document security configurations, procedures, and technical standards.
•    Work closely with internal stakeholders and external vendors to ensure compliance with security policies and regulatory requirements.

Required Qualifications
•    About 10 years of experience in cybersecurity, with a focus on security engineering and operations.
•    Solid understanding of security principles, technologies, and best practices across application and infrastructure domains 
•    Experience with cloud platform is an advantage
•    Familiarity with cybersecurity frameworks and standards (e.g., NIST, ISO 27001, OWASP, CIS).
•    Hands-on experience with security tools 
•    Strong analytical and problem-solving abilities.
•    Effective communication and collaboration skills.
•    Demonstrated ability to drive change and influence across technical and business teams.
•    Relevant certifications such as CISSP, CISM, CCSP, or equivalent are preferred.

 
Other Preferred Attributes
•    Experience with DevSecOps and secure CICD pipelines.
•    Knowledge of scripting or automation for security operations and reporting
•    Exposure to regulatory and compliance requirements 
•    Able to work independently and as part of a cross-functional team