LEAD SECURITY ENGINEER RESUME EXAMPLE

Job Summary: 

• Understand attacker methodology and defend against them by threat hunting, building detection mechanisms, and automating remediation procedures
• Continuously improve security detection and audit capabilities using tools and signals that evolve with the ever-changing security landscape and threats
• Work directly in building and integrating security tooling and features, and work across engineering teams to ensure secure consumer products and employee systems
• Collaborate with other engineering teams to guide security and privacy initiatives by participating in design reviews, code reviews, and threat modeling
• Create alert logic, metrics, and tooling, and remedy security events
• Introduce and promote the adoption of significant technologies and process innovations
• Promote high-quality, secure software through software delivery pipeline automation
• Build out a Security Information and Event Management (SIEM) solution, incident response, and forensic capabilities
• Pentest various web and mobile applications, networks and servers alongside an expert team

Skills on Resume: 

• Threat Hunting (Hard Skills)
• Detection Engineering (Hard Skills)
• Security Automation (Hard Skills)
• Tool Integration (Hard Skills)
• Threat Modeling (Hard Skills)
• Incident Response (Hard Skills)
• Process Innovation (Soft Skills)
• Penetration Testing (Hard Skills)

Job Summary: 

• Lead and implement Application Security Services and Solutions for large-scale, always available, secure solutions that will have a direct impact on securing Mati Application and Infrastructure
• Interact with different stakeholders, product development leads, architects, Cybersecurity Operations, Risk and Compliance team, external partners, merchants, and security service/solution providers
• Propose new security innovative solutions, updates to existing solutions
• Negotiate alternative options, build technical and release roadmaps
• Analyze and manage security risks of the Platform, a growing enterprise SaaS service that enables the transition toward sustainable, autonomous and electric transport
• Lead the Information Security Platform and grow the security function to scale with the organization’s needs
• Work closely with PM/developers to execute the plans
• Identify the security issues and prioritize the process development

Skills on Resume: 

• Application Security (Hard Skills)
• Stakeholder Management (Soft Skills)
• Solution Innovation (Hard Skills)
• Roadmap Planning (Soft Skills)
• Risk Analysis (Hard Skills)
• Security Leadership (Soft Skills)
• Cross-Team Collaboration (Soft Skills)
• Issue Prioritization (Hard Skills)

Job Summary: 

• Develop relationships across internal product, engineering and technical organizations
• Stay up to date with the latest vulnerabilities, exploits, security trends and general changes in technology to guide how these affect the security of business
• Threat modeling, architecture and design reviews on services and applications
• Help other departments build security into their workflow
• Mentor and cross-train other Security Engineers across the division
• Evaluate and promote new and existing security standards, solutions and tools
• Implement technical solutions in line with Coterie’s cybersecurity strategic plans
• Recommend, create and implement frameworks, tooling and processes for software security testing delivery
• Define and maintain the testing and development practices that need to be followed in this area by following the latest references
• Prepare and maintain the training content for internal development in the team
• Provide technical guidance and consultation with the people involved
• Use both manual and automated techniques to assess risks and circumvent the security mechanisms of devices and applications
• Work collaboratively with both DevOps engineers to successfully integrate software security testing assets
• Fill the white hacker mindset into the team

Skills on Resume: 

• Relationship Building (Soft Skills)
• Threat Modeling (Hard Skills)
• Security Mentoring (Soft Skills)
• Standards Evaluation (Hard Skills)
• Security Implementation (Hard Skills)
• Framework Development (Hard Skills)
• Technical Guidance (Soft Skills)
• Penetration Testing (Hard Skills)

Job Summary: 

• Set up, lead and perform all activities related to software application security including pen-testing, code reviews, and document threat models
• Plan and lead the red (hack) and purple (attack/defend) team exercise operations
• Develop automated tools to enhance operational infrastructure
• Fix security flaws and vulnerabilities
• Monitor and track security incidents
• Research the latest blockchain and software application attacks and provide assessments and advisory services
• Provide strategic guidance by developing standard operating procedures, policies, controls and programs
• Participate in on-call security rotation

Skills on Resume: 

• Penetration Testing (Hard Skills)
• Red Teaming (Hard Skills)
• Tool Automation (Hard Skills)
• Vulnerability Remediation (Hard Skills)
• Incident Monitoring (Hard Skills)
• Attack Research (Hard Skills)
• Policy Development (Soft Skills)
• On-Call Readiness (Soft Skills)

Job Summary: 

• Engage and manage stakeholders to ensure a holistic approach for the development of engineering solutions
• Provide technical assurance and management for the Security Systems delivery
• Work closely with the wider operations and engineering disciplines to develop the Physical Security Systems solutions that consider all relevant systems and subsystems
• Develop the engineering requirements and specifications that deliver railway capability
• Achieve the security operational requirements while mitigating environmental impacts, within the programme and budget
• Develop technical solutions involving proof of concept
• Manage the technical risk for the Physical Security Systems works
• Provide technical expertise and advice relating to the delivery of Physical Security Systems to the wider project organisation
• Working closely with the system safety, security and interoperability team, who are responsible for the overall security integration and approvals
• Manage engineering aspects of work packages and suppliers
• Promote and embed Equality, Diversity and Inclusion (EDI) in all work
• Support and comply with all organisational initiatives, policies and procedures on EDI

Skills on Resume: 

• Stakeholder Management (Soft Skills)
• Technical Assurance (Hard Skills)
• Systems Integration (Hard Skills)
• Requirements Engineering (Hard Skills)
• Risk Management (Hard Skills)
• Concept Development (Hard Skills)
• Technical Expertise (Hard Skills)
• Inclusive Leadership (Soft Skills)

Job Summary: 

• Establish best practices for cryptocurrency as an asset class
• Design and secure systems that handle billions of dollars in transactions per day
• Audit security-critical code, infrastructure, and architecture
• Build detection and monitoring for attacks on the application and infrastructure
• Write new security software tools/frameworks/scanners 
• Improve software development processes to make the codebase more secure 
• Develop security tooling to detect security issues and misconfigurations
• Design frameworks and controls to secure a fast-paced delivery environment and growing architecture
• Security testing and source code review of new application features and network services
• Secure modern technology stacks that include Kubernetes, Docker, AWS, and custom CI/CD tooling
• Participate and lead in security architecture decisions and threat modeling discussions that impact product and cloud infrastructure
• Automate alerting, vulnerability triaging, patching, and many other security processes
• Help in hardening and protecting a fleet of OSX and Linux workstations across a distributed working environment

Skills on Resume: 

• Cryptocurrency Governance (Hard Skills)
• System Hardening (Hard Skills)
• Code Auditing (Hard Skills)
• Attack Detection (Hard Skills)
• Security Tooling (Hard Skills)
• Process Improvement (Soft Skills)
• Threat Modeling (Hard Skills)
• Infrastructure Security (Hard Skills)

Job Summary: 

• Create initiatives to build security into the development and product life cycle
• Lead the secure design, development, and implementation of all Penta products and services
• Conduct Secure architecture reviews/threat modelling workshops with the teams to ensure all security risks are understood and security requirements laid out
• Ensure product and development teams address the security requirements laid out appropriately
• Ensuring the use of appropriate security tools in the development environment
• Ensuring proper access management in tech
• Lead the SIEM initiative
• Ensure secure audit trails are established for each product, as well as in the platform
• Security Auditing of the platform team and laying out security requirements for the platform team
• Lead creative initiatives in tech to ensure security is seen as everyone’s responsibility  
• Make security an interesting and fun topic for all in Tech
• Close collaboration with product and development teams on product security
• Close collaboration with the platform team on all aspects of securing the cloud
• Close collaboration with the data protection team

Skills on Resume: 

• Secure Development (Hard Skills)
• Architecture Review (Hard Skills)
• Requirement Alignment (Soft Skills)
• Tool Integration (Hard Skills)
• Access Management (Hard Skills)
• SIEM Leadership (Hard Skills)
• Security Auditing (Hard Skills)
• Cross-Team Collaboration (Soft Skills)

Job Summary: 

• Assess the current technology platform and drive an initiative to improve it
• Lead all aspects, including design, implementation and operation, of a critical security project
• Serve as security advisor for both internal technical and business teams
• Design, implement, and operate and security solutions for Earnest’s technology platforms
• Build, document, and test technology controls and policies
• Collaborate with leadership to create vision, mission and long-term roadmaps for the Security team
• Lead specific regulatory and industry compliance activities
• Assist with developing and growing the security and compliance program
• Represent the Earnest security team in front of the organization, Navient, or any other external entities auditing Earnest
• Mentor and train other security engineers to improve the overall team performance
• Conduct training for both engineering and business teams

Skills on Resume: 

• Platform Assessment (Hard Skills)
• Security Leadership (Soft Skills)
• Solution Design (Hard Skills)
• Control Development (Hard Skills)
• Roadmap Planning (Soft Skills)
• Compliance Management (Hard Skills)
• Team Mentoring (Soft Skills)
• Security Training (Soft Skills)

Job Summary: 

• Work together with the Digital Development (DD) Security Team on driving the needed improvements in security culture and competencies
• Participate as the local driver of the corporate Grundfos AppSec program together with the DD Security Team
• Lead and drive security within product development (PD) on Embedded Software across multiple product teams and solutions
• Develop and ensure execution of the Product Development Security Agenda in embedded software development forums
• Apply security policies, and develop and implement operational rules-of-engagement in collaboration with Digital Development, IS Security and Production
• Work closely with senior developers to ensure that code libraries, code standards, etc., incorporate proper security elements
• Drive and ensure that security-driven requirements and architecture are properly prioritized in PI planning
• Design and scope Penetration Test and Vulnerability Scans, and ensure that cyber/information security risks are addressed
• Participate in security assessments of devices and digital offerings
• Understand and guide in relation to regulatory requirements, e.g., GDPR, ENISA, DHS, UK NCSC/GCHQ
• Networking and close cooperation with peers working within security

Skills on Resume: 

• Security Culture (Soft Skills)
• AppSec Leadership (Hard Skills)
• Embedded Security (Hard Skills)
• Policy Implementation (Hard Skills)
• Code Standards (Hard Skills)
• Requirement Prioritization (Soft Skills)
• Penetration Planning (Hard Skills)
• Regulatory Guidance (Hard Skills)

Job Summary: 

• Design and develop innovative and scalable security automation tools
• Drive the static and Dynamic application security testing program
• Improve vulnerability management capabilities in the environment
• Work cross-functionally with other teams to help them understand the importance of security
• Perform security reviews and threat modeling for various services
• Drive implementation of security capabilities across the IT environment including GSuite, Slack, O365, etc
• Run small scope penetration testing exercises
• Develop a logging strategy and roadmap for security logs across the environment

Skills on Resume: 

• Security Automation (Hard Skills)
• AppSec Testing (Hard Skills)
• Vulnerability Management (Hard Skills)
• Cross-Functional Collaboration (Soft Skills)
• Threat Modeling (Hard Skills)
• Capability Deployment (Hard Skills)
• Penetration Testing (Hard Skills)
• Logging Strategy (Hard Skills)

Job Summary: 

• Research new technologies, understand existing processes, and reference recognized standards and frameworks
• Coordinate and assist other teams to ensure issues effecting organization’s overall security are addressed
• Contributing to the configuration and maintenance of security operations controls
• Perform analysis of logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify and investigate potential threats
• Researches, analyses and recommends the implementation of software or hardware changes to improve enterprise security posture or to resolve enterprise security deficiencies
• Acts as a security liaison with project teams and a variety of IT teams to ensure solutions being designed follow Athene’s security standards, regulatory requirements and security best practices
• Acts as a security subject-matter expert for cloud technology with emphasis on AWS and Azure
• Assists in the development of information security policies, standards and baselines

Skills on Resume: 

• Technology Research (Hard Skills)
• Issue Coordination (Soft Skills)
• Security Operations (Hard Skills)
• Log Analysis (Hard Skills)
• Security Improvement (Hard Skills)
• Security Liaison (Soft Skills)
• Cloud Expertise (Hard Skills)
• Policy Development (Hard Skills)

Job Summary: 

• Build, maintain and optimize an On-Prem Splunk Solution through automation
• Leverage the MITRE ATT&CK framework
• Monitor the threat landscape and evaluate existing data sources to identify opportunities for new SIEM content development
• Support the onboarding of new data sources by developing relevant SIEM content
• Collaborate with security engineers to improve logging from various appliances, applications and correct misconfigurations
• Coordinate closely with Security Operations, Detection Engineering, Product Team and the Enterprise Application Team
• Develop playbooks for triaging and responding to events when logs are inconsistent or missing
• Develop and maintain a SIEM content catalog, including mapping to the MITRE ATT&CK framework, to improve the efficiency of the DocuSign security stack
• Design, develop, and monitor various dashboards and reports that provide information on content coverage, alerting, and fidelity

Skills on Resume: 

• Splunk Management (Hard Skills)
• MITRE Mapping (Hard Skills)
• Threat Monitoring (Hard Skills)
• SIEM Development (Hard Skills)
• Log Optimization (Hard Skills)
• Team Coordination (Soft Skills)
• Playbook Creation (Hard Skills)
• Dashboard Reporting (Hard Skills)

Job Summary: 

• Formulate a Threat Intel program for the organization and drive it end-to-end
• Connect with different stakeholders to identify PIRs and create achievable project charters to enhance the Intel maturity score each quarter
• In-house development, maintenance, operations of tools, managing integrations and analytics use cases on SIEM platforms for Cyber Threat Intelligence (CTI)
• Compile cyber threat data gathered through independent research and analysis along with Security Operations Center activity, and look at emerging technology, techniques and adversarial capabilities and tactics
• Develop cyber threat analysis and mitigation courses of action, and provide actionable intelligence used in organizational IT Asset protection, strategic cyber threat trending and situational awareness of customer leadership
• Mentoring fellow team members on the CTI lifecycle
• Manage and maintain business relationships and communication with vendor partners
• Participate as a member of the Cybersecurity Incident Response Team (CIRT)
• Accurately and rapidly respond to security incidents as assigned by the Incident Handler and provide Intelligence enrichments
• Perform adhoc analysis and investigation for the latest Threats, collect IOCs and IOAs in a timely fashion
• Ensure compliances to Cyber Kill Chain and MITRE ATT&CK Frameworks
• Publish Strategic, Technical and Tactical Threat Intelligence reports
• Enhancing security programs and tools while delivering required security metrics

Skills on Resume: 

• Threat Intelligence (Hard Skills)
• Stakeholder Alignment (Soft Skills)
• SIEM Integration (Hard Skills)
• Threat Analysis (Hard Skills)
• Mitigation Planning (Hard Skills)
• Team Mentoring (Soft Skills)
• Incident Response (Hard Skills)
• Report Publishing (Hard Skills)

Job Summary: 

• Manage a team of IAM engineers and give guidance in all areas of Identity and Access Management
• Give guidance to a global IAM team and build a culture of collaboration
• Design, carry out and support identity and access management solutions
• Produce architecture diagrams and blueprints to support implementation activities
• Support Identity Governance and Administration (onboarding, transfers, and terminations)
• Ensure all user provisioning/deprovision processes are
• Technical implementation, design, development, and administration of interfaces and single sign-on/2FA/MFA, role-based access control integrations between the IAM and systems
• Migrate legacy environment(s) to new platforms/services per best practices
• Analyzes technical requirements, participates in designs and assists with the integration of Identity Governance platforms, Privileged Access management platforms and Identity Orchestration platforms

Skills on Resume: 

• IAM Leadership (Soft Skills)
• Team Collaboration (Soft Skills)
• Access Management (Hard Skills)
• Architecture Design (Hard Skills)
• Identity Governance (Hard Skills)
• SSO Integration (Hard Skills)
• Platform Migration (Hard Skills)
• Requirement Analysis (Hard Skills)

Job Summary: 

• Work with the lead security engineer within an application development area to ensure that security best practices and internal requirements are met through the entire development lifecycle
• Perform threat modeling, design reviews and code reviews with a focus on security as part of the development lifecycle
• Assist with integrating state-of-the-art technology to meet the business needs and interface with business units regarding technical planning and application security topics
• Guide the interpretation of Secure Software Development Lifecycle (S-SDLC) as well as governance of security standards with development teams
• Assist with proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes
• Build application security in cloud-based and virtualized environments
• Perform regular security testing, code review, and assist with remediation of identified issues
• Consult with development and architecture teams on Secure Development methodologies and best practices, including incident response and architecture, PCI certification and other audit and review processes
• Advise internal customers and evangelize threat modeling, secure design reviews, static code analysis and vulnerability remediation
• Applying security controls (PCI-DSS, SOX, HIPAA, ISO) as well as web application security topics such as OWASP Top 10, CWE Top 25, and authentication infrastructure (SAML, OAuth)

Skills on Resume: 

• Threat Modeling (Hard Skills)
• Design Review (Hard Skills)
• Tech Integration (Hard Skills)
• SDLC Governance (Soft Skills)
• Cloud Security (Hard Skills)
• Security Testing (Hard Skills)
• Secure Development (Hard Skills)
• Compliance Controls (Hard Skills)

Job Summary: 

• Owns and defines strategy to implement and operate a secure cloud infrastructure
• Performs complex cloud security, cloud networking and infrastructure analysis to independently identify technical solutions that meet the desired regulatory and security requirements
• Works closely with Lead Cloud Architects, Infrastructure, and Software engineering through the product implementation lifecycle to design secure products, validate product designs and implementations against defined security controls
• Works day to day with the Edge Security organization to define required security posture, enhance controls and remediate issues
• Ensures that properly vetted security, networking and infrastructure services are selected and implemented
• Hands-on technical work for the implementation and operations of infrastructure and security solutions
• Uses automation across all aspects of the security and related technical portfolio
• Ensures that product implementation schedules are followed, participates in routine planning of cloud infrastructure services that support new product features and engineering requirements, and ensures that cloud services meet security and quality requirements
• Uses independent judgment requiring analysis of variable and complex factors and determining the best course of action to ensure all Technology services are secure and compliant
• Advises executives to develop and enhance security postures, and is a key partner executing regulatory, controllership and security assessments

Skills on Resume: 

• Cloud Strategy (Hard Skills)
• Infrastructure Analysis (Hard Skills)
• Secure Architecture (Hard Skills)
• Control Enhancement (Hard Skills)
• Technical Implementation (Hard Skills)
• Security Automation (Hard Skills)
• Compliance Assurance (Hard Skills)
• Executive Advising (Soft Skills)

Job Summary: 

• Implementing secure coding best practices (e.g., OWASP SAMM)
• Training and upskilling developers in the role of security champion
• Advising on secure design patterns (AWS) for cloud architectures
• Advising on integration and selection of automated security tooling (DevSecOps)
• Organising and running point-in-time pen testing and security assessments
• Work in a small, tight-knit cross-functional team
• Work with other teams to help inherently secure architect solutions
• Effectively balance security risk and product advancement
• Oversee penetration testing and build threat models

Skills on Resume: 

• Secure Coding (Hard Skills)
• Developer Training (Soft Skills)
• Cloud Design (Hard Skills)
• Tool Integration (Hard Skills)
• Penetration Testing (Hard Skills)
• Team Collaboration (Soft Skills)
• Risk Balancing (Soft Skills)
• Threat Modeling (Hard Skills)

Job Summary: 

• Lead the strategic direction for the safe and secure operation of ET’s core networks
• Support the delivery and refresh of operational networks
• Responsible for the ongoing management and maintenance of the operational network infrastructure on ET Substations and overseeing the key network security controls
• Investigate opportunities for deploying new technology and improving existing systems, including ensuring cybersecurity is at the heart of any OT network system
• Lead the external technical engagement to justify the need to invest in resilient network architecture and provide the cyber-technical interface with suppliers and customers on behalf of the business
• Support the development of solutions including liaison with internal and external security architects and 3rd party suppliers, leading the network design, security and implementation of the solution
• Deliver technical guidance to internal teams to ensure security and good network design are included in engineering solutions
• Support the development of OT security network standards, policy and training
• Establish, track and monitor ET’s performance on established cyber and security drivers, leading the external reporting on NIS compliance and cyber maturity
• Take a lead role in supporting the ET business in building its cyber and security capabilities in the area of OT Network, Systems and Services, working with the Cyber Business Development manager to establish training pathways and recruitment pipelines

Skills on Resume: 

• Network Leadership (Soft Skills)
• Operational Security (Hard Skills)
• Infrastructure Management (Hard Skills)
• Technology Innovation (Hard Skills)
• External Engagement (Soft Skills)
• Solution Design (Hard Skills)
• Technical Guidance (Soft Skills)
• Compliance Reporting (Hard Skills)

Job Summary: 

• Demonstrate innovative security approaches to non-traditional IT environments
• Support security assessments for Culture Amp solutions and select, implement, and maintain appropriate security controls
• Assist in the development and improvement of processes, standards, and documentation relating to security tools and services
• Build tooling and services to accelerate other teams in delivering features and infrastructure securely
• Respond to queries from team members across the organisation and champion security in key forums
• Work in a security center of excellence to improve the security posture of all client-facing applications developed within the organization
• Work on a range of information security, data protection and risk management activities including policy compliance, vulnerability management, identity and access management, event monitoring and reporting, risk assessments and incident response
• Help define and promote security best practices and guidelines, so cloud-based applications are created and launched with consistent, repeatable and secure methodologies
• Ensure services behave securely when deployed to production and throughout their life cycle
• Work closely with security engineers to help translate SDLC standards into easily consumable examples and code snippets, co-developing engineering maturity standards, and providing teams with specific suggestions for improvement
• Educate developers on security test automation best practices and champion the use of automation frameworks that run user cases, scenarios and situations end-to-end

Skills on Resume: 

• Security Innovation (Hard Skills)
• Control Implementation (Hard Skills)
• Process Improvement (Soft Skills)
• Security Tooling (Hard Skills)
• Security Advocacy (Soft Skills)
• Risk Management (Hard Skills)
• Best Practices (Soft Skills)
• Developer Enablement (Soft Skills)

Job Summary: 

• Researching and understanding Cybersecurity threats, threat actors, trends in adversary activities, attack vectors and Tactics, Techniques and Procedures (TTPs)
• Using threat modeling and attack frameworks to develop advanced detection mechanisms for a variety of security tools and technologies to identify, detect and respond to malicious activity
• Leveraging intelligence derived from Threat Hunting to improve overall Security Operations, tool visibility, threat awareness, and detection and response
• Driving the implementation and consistent operation of the Threat Hunting program
• Leading security program improvements and efficiencies across security technologies, processes, and services
• Optimizing security tools deployment and introducing scalable security services
• Building and coordinating plans for the transition and integration of an acquired company’s security operations, tools, services, and processes
• Continually building automation and tooling capabilities for the deployment and management of internal security services
• Driving continuous improvement of the acquisition security integration playbook
• Proactively search for Threats to prevent or minimize Cybersecurity attacks
• Communicate to technical and management levels
• Interpret and analyze data from multiple sources, providing key analytics
• Document findings in an easy-to-read format

Skills on Resume: 

• Threat Research (Hard Skills)
• Detection Engineering (Hard Skills)
• Threat Hunting (Hard Skills)
• Program Leadership (Soft Skills)
• Tool Optimization (Hard Skills)
• Security Integration (Hard Skills)
• Automation Development (Hard Skills)
• Data Analysis (Hard Skills)

Job Summary: 

• Lead and manage security projects
• Perform reviews, identify gaps and establish technical solutions for PCI and HIPAA
• Identify, define and review security requirements
• Implementing, coordinating, monitoring and upgrading security measures for the protection of all systems
• Penetration testing against Sword Health networks and services
• Collaborate with development teams to recommend and implement changes to enhance systems’ security and prevent unauthorized access
• Provide Security training for technical and non-technical audiences
• Troubleshoot security and network problems
• Respond diligently to all system or network security breaches
• Ensuring that the infrastructure is protected by enabling or implementing appropriate security controls
• Monitor systems compliance with security best practices, legal requirements and internal policies

Skills on Resume: 

• Project Leadership (Soft Skills)
• Compliance Review (Hard Skills)
• Requirement Analysis (Hard Skills)
• Security Implementation (Hard Skills)
• Penetration Testing (Hard Skills)
• Team Collaboration (Soft Skills)
• Security Training (Soft Skills)
• Incident Response (Hard Skills)

Job Summary: 

• Manage the day-to-day management of the CSOC infrastructure
• Provide technical design, implementation and maintenance of technical security infrastructure and policies
• Develop technical solutions and new security tool-sets to mitigate security vulnerabilities and automate repeatable tasks
• Build, implement and tune SIEM event correlation rules, logic, and content to filter out security events associated with known network behaviour, known false positives and/or known errors
• Work with the Security Monitoring team to appropriately and practically defend the enterprise in accordance with established policies, procedures, guidelines and practices
• Prepare and document standard operating procedures and protocols
• Work with the Threat Intelligence and Cyber Assurance teams to monitor and research industry information sources for zero-day threats and vulnerabilities that impact clients
• Establish and maintain strong, collaborative working relationships with technology infrastructure, application, and architecture teams
• Support the development of Use Cases
• Rules creation and tuning, fine-tuning of alerts
• Supporting the CSOC Architect on current and future projects

Skills on Resume: 

• CSOC Management (Hard Skills)
• Security Infrastructure (Hard Skills)
• Tool Development (Hard Skills)
• SIEM Tuning (Hard Skills)
• Enterprise Defense (Hard Skills)
• Procedure Documentation (Soft Skills)
• Threat Monitoring (Hard Skills)
• Cross-Team Collaboration (Soft Skills)

Job Summary: 

• Lead challenging engagements that assess the security of modern and complex cloud stacks
• Work with customers, provide subject matter expertise
• Optimize existing cloud offerings, update methodologies and deliverables, and help grow the skillsets of the team
• Generate thought leadership that helps establish Praetorian as the premier cloud security company
• Leveraging scripting languages (e.g., Python) to automate the generation of benchmarks and best practices
• Integrating the above into the cloud security platform
• Installing, configuring, and troubleshooting application stacks and database applications
• Working directly with IDS/IPS and other security tools

Skills on Resume: 

• Cloud Assessment (Hard Skills)
• Client Expertise (Soft Skills)
• Offering Optimization (Hard Skills)
• Thought Leadership (Soft Skills)
• Scripting Automation (Hard Skills)
• Platform Integration (Hard Skills)
• Stack Troubleshooting (Hard Skills)
• Security Tools (Hard Skills)

Job Summary: 

• Driving the security incident response process, requesting appropriate actions to be taken to mitigate the incident and minimize possible impact
• Execute tasks required to mitigate the incident and minimize possible impact
• Assisting internal SOC in monitoring SIEM, triaging alerts and responding to security incidents
• Work with the Detection Engineering team to help build out SOAR and SIEM functionality
• Perform forensic evidence collection and analyze the affected environment
• Compiling and presenting the Security Incident report, analyzing the causes and consequences of the security incident
• Providing information on incident timelines, attack vectors involved, impact and deriving activities required actions to be taken
• Working with the SOC, infrastructure groups, networking divisions, IT and other internal parties to ensure timely resolution of Security Incidents and proper analysis of the same
• Lead info security engineer (Incident Response, Forensics) will be in charge of handling incidents in multiple environments and platforms - Data Center, Public Cloud, Office space
• Assess impact and suggest remediation actions to address malware infections in multiple environments - Linux, Windows, Mac OSX
• Collect and analyze forensic evidence following legal requirements and industry best practices
• Attack execution patterns and exploitation techniques

Skills on Resume: 

• Incident Response (Hard Skills)
• Alert Triage (Hard Skills)
• SOAR Development (Hard Skills)
• Forensic Analysis (Hard Skills)
• Report Preparation (Soft Skills)
• Cross-Team Coordination (Soft Skills)
• Impact Assessment (Hard Skills)
• Malware Remediation (Hard Skills)

Job Summary: 

• Responsible for leading the security team in the engineering, design, implementation, maintenance, analysis, and administration of Company security technologies
• Lead projects for security requirements, network design reviews, and security testing for network, systems, and other IT teams
• Coordinate with Company systems, network and development teams to ensure network security standards are being followed and implemented correctly
• Evaluate new security technology and emerging threats and provide recommendations to strengthen the information security environment
• Leads the security team in the handling and resolution of incidents of security breaches
• Trains security team members in the areas of threat, vulnerability, risk assessments, and investigations
• Provides analytical and technical security recommendations and guidance
• Identifies requirements, based upon need or as a result of a security threat that puts organizations' systems at risk
• Develop new ideas and techniques that advance the state of the practice for cyber defensive operations
• Guide the security team in conducting internal and external penetration tests with multiple technologies

Skills on Resume: 

• Security Leadership (Soft Skills)
• Network Review (Hard Skills)
• Standards Coordination (Soft Skills)
• Threat Evaluation (Hard Skills)
• Incident Handling (Hard Skills)
• Team Training (Soft Skills)
• Risk Assessment (Hard Skills)
• Penetration Testing (Hard Skills)

Job Summary: 

• Proactively conduct security threat analysis and recommend solutions to manage network, systems and application vulnerabilities
• Lead the review and analysis of new systems (hardware and software) and provide recommendations concerning their security
• Install, configure, and maintain Company information security technologies
• Drive compliance with Company security standards by educating ODST teams and guiding remediation efforts
• Provide leadership in ODST to recommend effective security configurations and architecture
• Liaison to the ODST Teams to effectively communicate and architect security solutions
• Develops documentation to support ongoing security systems operations, maintenance, and specific problem resolution
• Provide support off-hours in addition to regular workdays to troubleshoot escalated issues and apply production changes

Skills on Resume: 

• Threat Analysis (Hard Skills)
• System Review (Hard Skills)
• Security Maintenance (Hard Skills)
• Compliance Guidance (Soft Skills)
• Security Leadership (Soft Skills)
• Solution Architecture (Hard Skills)
• Documentation Development (Soft Skills)
• Issue Resolution (Hard Skills)

Job Summary: 

• Work with stakeholders to develop and drive application and infrastructure (Cloud and Data Center) security good practices, policies, and procedures across the organization
• Work to develop, maintain and monitor application and infrastructure security KPIs and manage stakeholder communication with the security KPI dashboard
• Collaborate with engineering teams on secure-by-default architecture solutions
• Support and facilitate DevSecOps adoption for application delivery and operation to achieve agile security
• Pilot assessments of process, application, and infrastructure security
• Create processes to ensure continued compliance with security goals
• Partner with senior management to mature the security program
• Proactively identify and remediate CVEs threatening the organization
• Guide software engineers through the remediation of security vulnerabilities

Skills on Resume: 

• Security Governance (Hard Skills)
• KPI Management (Soft Skills)
• Secure Architecture (Hard Skills)
• DevSecOps Enablement (Hard Skills)
• Security Assessment (Hard Skills)
• Compliance Processes (Hard Skills)
• Program Maturity (Soft Skills)
• Vulnerability Remediation (Hard Skills)

Job Summary: 

• Create detailed cybersecurity policies
• Provide product security-related certification support
• Build and implement product cybersecurity solutions for both ground and vehicle systems
• Drive the articulation and alignment of the product security strategy and collaboration with other organizations
• Provide direction and advice on emerging threats, vulnerabilities, and security practices
• Continuously evaluate and improve security controls (both technology and process) against potential new threats
• Partner with architects to define robust security architecture for embedded and IMA avionics components
• Coordinate with software developers and DevOps to efficiently implement all security measures
• Promote guidelines on standard security methodologies during software/sophisticated electronic hardware development

Skills on Resume: 

• Policy Creation (Hard Skills)
• Certification Support (Hard Skills)
• Cybersecurity Solutions (Hard Skills)
• Strategy Alignment (Soft Skills)
• Threat Guidance (Hard Skills)
• Control Improvement (Hard Skills)
• Security Architecture (Hard Skills)
• Developer Coordination (Soft Skills)

Job Summary: 

• Create and deliver an effective Security Operations and testing program and help evaluate and recommend new and emerging security products and technologies
• Implement Security Incident and Event monitoring solutions to ensure potential security incidents are correctly identified, analyzed, defended, investigated, and reported
• Monitor the threat landscape for current or emerging threats, as well as carry out threat modeling, which can guide the actions of the SOC
• Automate the security and compliance capabilities in support of DevSecOps processes (SDLC)
• Review existing infrastructure and identify opportunities to embed security by design
• Lead and implement required Security Tooling for Vulnerability assessments in both code and supporting cloud infrastructure
• Help coordinate IAM activities to provide secure, controlled access to systems and services
• Conduct penetration tests to validate resiliency and identify areas of weakness to fix

Skills on Resume: 

• Security Operations (Hard Skills)
• Threat Monitoring (Hard Skills)
• DevSecOps Automation (Hard Skills)
• Secure Design (Hard Skills)
• Tool Implementation (Hard Skills)
• Vulnerability Assessment (Hard Skills)
• Access Management (Hard Skills)
• Penetration Testing (Hard Skills)

Job Summary: 

• Lead a small team of Cyber Defense Engineers supporting the primary goal of Global Information Security Cyber Defense, with a focus on Cryptographic Technologies and emerging crypto patterns
• Create and execute Cyber Defense solutions as directed by Cyber Defense management and in accordance with the CME Cyber Defense Roadmap
• Manage projects according to project plans with a keen eye to objective delivery, cost adherence and minimizing risk
• Contribute to and manage a rolling 18-24 month plan/roadmap, gain approval for said plan and execute said plan in accordance with Cyber Defense Service Lifecycle (CDSL), i.e., ITIL v3-2011 Service Principles
• Maintain acute industry awareness of Cyber Defense Product Landscape
• Emerging and rising threat landscape and the latest/newest protocols/techniques/evolution in Cyber Security/Cyber Defense, with a focus on Encryption Technologies and emerging Encryption patterns
• Create complete Service Designs including Technical Requirement Documents, Proof of Concept use cases, Technology Engineering Documents, Service Operations Guides, etc.
• Perform operational knowledge transfer to associated support and consumer organizations

Skills on Resume: 

• Cyber Defense (Hard Skills)
• Crypto Expertise (Hard Skills)
• Project Management (Soft Skills)
• Roadmap Planning (Soft Skills)
• Industry Awareness (Hard Skills)
• Threat Tracking (Hard Skills)
• Service Design (Hard Skills)
• Knowledge Transfer (Soft Skills)

Job Summary: 

• Apply knowledge of security principles, theories and concepts to business and development life cycle
• Take a Lead Security Position in larger, more complex initiatives for Database program (e.g., global initiatives, cross-functional/cross-geographies)
• Provide strategic leadership regarding organization-wide risks, standards, technologies, and methodologies
• Work closely with database engineers to evaluate business requests to determine feasibility
• Provide and recommend optimal solutions to meet security and regulatory requirements in the design of new/enhanced systems
• Ensure established security policies and standards are observed on projects
• Provide technical support for business owners to ensure adherence to requirements and document problem areas with resolutions
• Document enhancements to security standards and procedures
• Prepare and present business/technical presentations
• Investigate/Research MasterCard or industry business/technical security processes

Skills on Resume: 

• Security Principles (Hard Skills)
• Strategic Leadership (Soft Skills)
• Risk Governance (Hard Skills)
• Request Evaluation (Soft Skills)
• Solution Design (Hard Skills)
• Policy Compliance (Hard Skills)
• Technical Support (Soft Skills)
• Security Research (Hard Skills)

Job Summary: 

• Lead a Security Engineering Team within the SAP Cyber Fusion Center
• Perform as the subject matter expert (SME) for one or more key tools crucial to security operations, e.g., SIEM, Endpoint Detection and Response (EDR), Network Packet Capture, Netflow, Threat Intelligence Platform (TIP), and/or Security Operations and Automated Response (SOAR)
• Architect, deploy, integrate, and support security operations tools (SIEM, IDS/IPS, Vulnerability Scanning, DLP and Anti-Virus Protection) at all levels of the cloud infrastructure stack
• Develop, implement, and execute standard procedures for the administration, change management, version/patch management, and lifecycle management of critical security infrastructure
• Contributing to the continuously evolving SAP detection strategy
• Develop and implement correlation rules and threat monitoring use cases
• Troubleshoot and resolve issues with the threat monitoring toolsets
• Security support of key elements of an AWS Cloud Environment
• Create signatures and tools to analyze and detect malicious activity
• Build automation for response and remediation of malicious activity
• Architect and implement disaster recovery operations and data backups 
• Troubleshoot, diagnose, and resolve hardware, software, and other system problems
• Research and implement new hardware and software solutions to fit the company's needs

Skills on Resume: 

• Security Leadership (Soft Skills)
• Tool Expertise (Hard Skills)
• Operations Integration (Hard Skills)
• Procedure Development (Hard Skills)
• Detection Strategy (Hard Skills)
• Threat Monitoring (Hard Skills)
• Cloud Security (Hard Skills)
• Response Automation (Hard Skills)

Job Summary: 

• Review daily company processes and ensure the needed controls are in place throughout the Plan-Do-Check-Act cycle
• Implement tracking to measure the effectiveness of the corporate information security program
• Implement security controls in accordance with established security policies
• Conduct security evaluations against 3rd party vendors
• Assist in security risk assessments initiated by internal or external parties
• Plan and execute security assessments with third-party consultants, tracking vulnerabilities identified to remediation
• Advise internal stakeholders on recommended security best practices 
• Ensure ample consideration of information security in business processes
• Research security solutions tailored to the needs of the business

Skills on Resume: 

• Process Control (Hard Skills)
• Program Measurement (Hard Skills)
• Control Implementation (Hard Skills)
• Vendor Evaluation (Hard Skills)
• Risk Assessment (Hard Skills)
• Assessment Management (Hard Skills)
• Security Advisory (Soft Skills)
• Solution Research (Hard Skills)

Job Summary: 

• Manage and maintain SAVE technical security controls
• Establish, monitor and maintain automated processes that aid in alert information enrichment and incident management
• Maintain control baselines to identify capacity and licensing requirements for future budgets
• Ensure controls meet required standards
• Work with other team members to identify control gaps and implement improvements to address
• Work with the Architects and Management team to identify new technical controls and implement them within the environment
• Work with other IT Team members to ensure that new and existing security controls integrate seamlessly with IT systems
• Work through Incident Response should the need arise with the investigation and resolution of Security Incidents
• Create and maintain operational procedures, configuration, and technical documentation to a high standard
• Manage and maintain metrics and reporting to ensure the performance of security controls is understood
• Maintain an awareness of new and emerging security technologies and threats
• Be a mentor for more junior members of the Security Engineering team
• Promote Cyber Security awareness throughout all areas of the company
• Help manage and resolve operational issues with technical controls, helping coordinate and direct team efforts
• Work with End User support teams to enable a secure environment

Skills on Resume: 

• Control Management (Hard Skills)
• Alert Enrichment (Hard Skills)
• Standards Compliance (Hard Skills)
• Gap Remediation (Hard Skills)
• Control Integration (Hard Skills)
• Incident Response (Hard Skills)
• Team Mentoring (Soft Skills)
• Security Awareness (Soft Skills)

Job Summary: 

• Define a security roadmap for all products (OTA, logging, remote diagnostics)
• Deliver a security product spec that includes requirements
• Design specifications and test plans for the system, software, and hardware teams
• Perform Threat Analysis and Risk Assessment (TARA)
• Analyze cybersecurity attack entry points and evaluate risk versus impact
• Work with the team to implement cybersecurity requirements 
• Evaluate test and software analysis reports
• Perform competitive analysis and maintain knowledge of emerging technologies in both the automotive and consumer electronics fields

Skills on Resume: 

• Security Roadmapping (Hard Skills)
• Requirement Specification (Hard Skills)
• Test Planning (Hard Skills)
• Threat Analysis (Hard Skills)
• Risk Evaluation (Hard Skills)
• Requirement Implementation (Hard Skills)
• Report Evaluation (Hard Skills)
• Competitive Research (Hard Skills)

Job Summary: 

• Provide technical guidance to a team of security engineers across strategic, tactical and operational security initiatives
• Look for opportunities to be better and oversee the delivery of these initiatives
• Prioritise and plan activities for the team
• Liaise with architects and leaders from around the business to help drive successful outcomes
• Ensure adherence with regulations, policies, standards and best practices
• Work as the subject matter expert for SIEM-related activities covering both traditional and virtual environments
• Engage closely with management and sit within the Security Operations team
• Provide security expertise and technical leadership while collaborating with security specialists, program managers, developers, and all levels of management
• Dealing with ingestion pipelines primarily through AWS, dealing with 40+terabytes/day

Skills on Resume: 

• Technical Guidance (Soft Skills)
• Initiative Delivery (Soft Skills)
• Activity Planning (Soft Skills)
• Business Liaison (Soft Skills)
• Standards Compliance (Hard Skills)
• SIEM Expertise (Hard Skills)
• Security Leadership (Soft Skills)
• Pipeline Management (Hard Skills)

Job Summary: 

• Prepare comprehensive test plans and test cases that account for product security, design and technical requirements
• Threat Modeling of applications, systems and/or services
• Reviewing and analyzing existing codebases for vulnerabilities to make recommendations
• Track product quality and availability over time and implement measurement and tooling
• Bring up-to-date and relevant knowledge about tools and test strategies
• Lead on all Cyber/Information security matters for the business
• Ensure that the organisation has in place a set of consistently reliable controls in respect to cyber risk
• Drive the delivery of new cybersecurity systems and services, taking responsibility for their full lifecycle and ensuring continuous improvement
• Coordinate response and action to any IT security issues or incidents, ensuring they are dealt with in a professional and timely manner
• Work with the whole business to implement effective cybersecurity protocols
• Build a small but efficient IT security team

Skills on Resume: 

• Test Planning (Hard Skills)
• Threat Modeling (Hard Skills)
• Code Review (Hard Skills)
• Quality Tracking (Hard Skills)
• Tool Knowledge (Hard Skills)
• Security Leadership (Soft Skills)
• Control Reliability (Hard Skills)
• Incident Coordination (Soft Skills)

Job Summary: 

• Owning and delivering a risk-based plan and roadmap for threat and vulnerability management services across global Commercial and Corporate infrastructures
• Partnering with the IT and engineering stakeholders to identify, understand and patch or otherwise mitigate security threats to support business needs
• Delivers expert capabilities and direction for threat and vulnerability management services
• Developing and delivering the required threat and vulnerability management reporting capabilities
• Managing third-party network security assessments
• Performing in-depth analysis of current threat activity and trends
• Identifying and resolving false positive findings in assessment results
• Providing support for audits and gathering of artifacts for ISO27001, PCI, SOC1 and SOC2, etc.
• Leading and delivering reporting and metrics including Key Risk Indicators (KRI’s)
• Producing vulnerability metrics related to identified vulnerabilities, remediation, and risk reduction
• Documenting processes and procedures related to all aspects of a threat and vulnerability management program

Skills on Resume: 

• Risk Roadmapping (Hard Skills)
• Stakeholder Partnership (Soft Skills)
• Vulnerability Expertise (Hard Skills)
• Reporting Development (Hard Skills)
• Assessment Management (Hard Skills)
• Threat Analysis (Hard Skills)
• Audit Support (Hard Skills)
• Process Documentation (Hard Skills)

Job Summary: 

• Champion information security practices across the organization
• Perform reviews of multiple cloud platforms and services to assess cyber risks, including security risks such as data leakage and unauthorized access, and design controls to mitigate those risks
• Engage directly with development teams via design reviews, consultations and security testing
• Design and develop cloud-specific security policies, standards, and procedures
• Provide technical design and architecture advice to product teams on how to securely develop and build cloud-ready applications
• Develop high-quality technical content such as security automation tools, reference security architectures, and white papers to help teams build on the work deliver
• Identify security issues and risks, and develop mitigation plans
• Architect, design, implement, support, and evaluate security-focused tools and services

Skills on Resume: 

• Security Advocacy (Soft Skills)
• Risk Assessment (Hard Skills)
• Design Review (Hard Skills)
• Cloud Policies (Hard Skills)
• Architecture Guidance (Hard Skills)
• Security Automation (Hard Skills)
• Risk Mitigation (Hard Skills)
• Tool Development (Hard Skills)