
The Role
Strategic and technically adept cybersecurityprofessionalwith deepexpertiseinVulnerabilityManagement,OffensiveSecurity, and advanced threat detection. AsLeadof Cyber ThreatEngineering,this individual willberesponsible fordriving proactive defense initiatives thatidentifyand mitigate risks before they can be exploited. Experienced in leading red and purple team operations, orchestrating vulnerability assessments, and integrating threat intelligence to inform remediation and hardening strategies. Skilled in aligning offensive security insights with enterprise risk managementand Incident Response Strategies, improving security posture through automation, and fostering a culture of continuous testing and improvement. Recognized for building high-performing teams that bridge the gap between adversary emulation and defensive readiness to ensure comprehensive protection across digital assets.
We are looking for candidates whohave apassionforcyber security, threat detection,riskmitigation,andautomation. You willprovideinsightinourefforts to build and support a defensibleenvironment where we are able to detect,containand respond quickly to threats, vulnerabilitiesand compromisein ways that serve to enablethetechnologyneedsofahighly collaborative organization. The environment is fast-paced and commonly on the leading edge of technology, including early adoption of various cloud servicesalong withthe challenges of integrating those services into our security practice.
Responsibilities
Support leadership withenterprise-wide vulnerability identification, assessment, and remediation programs across infrastructure, cloud, and applications.
Provide continuous visibility to new and emerging threats against existing securitycontrols;ensuring controlsremaineffectivetochanging business and threat landscapes.
Work across the Tech department to enhance security posture capabilities to limit security misconfigurations through secure configuration standards,monitoring,and remediation.
Integrate automated scanning and vulnerability intelligence into CI/CD and asset management systems.
Translate offensive findings into actionable security improvements anddetection ofengineering use cases.
Collaborate with defensive teams tovalidatesecurity controls and improve resilience through continuous testing.
Support the Offensive Security Lifecycle via management ofinternal and externalCyber Threat and Offensive Security assessments.
Partner closelywithIncident Response teams to enhancedetection oflogic, playbooks, and threat-hunting capabilities.
Required Capabilities
Aminimum of6years’ experience delivering information security solutions, ideally withAmixed focus onoffensive and defensive security roles.
bachelor’sor master’s degree in a relevant field of work
Hands on experience inCyber Threat and Offensive Securityoperationsto test andvalidatethe effective operation of securitycontrols,measuring the ability to stop threats and attacks at the earliest point in the kill chain
Proventrack recordworking as both an individual contributor andleadin the areas ofCyberThreat,VulnerabilityManagement, orIncidentResponse
Strong understanding of the fundamental operations of servers, operating systems, networks,cloudapplicationsand infrastructurealong withanadvancedunderstanding of the key controls required for secure operation of these systems
experience scriptingin at least one of the following languages: PowerShell, Python, JavaScript
experiencein aligning threat and vulnerability management efforts to frameworksand controlobjectives-MITRE ATT&CK, NIST CSF, ISO27001, Center for Internet Security, OWASP,
Experience integrating thefollowing toolsand capabilitiesintoa successfulthreat and vulnerabilityprogram – Security OrchestrationAutomation and Response, Security Information andEvent Management, Vulnerability Scanning,SecurityThreat Feeds,Red TeamTooling