Cyber Defense Manager

My client is looking for a Cyber Defense Manager to work within the CISO Security Operations team with the main focus being to detect, analyze, mitigate, and manage high-impact information security events and incidents.

This role is crucial in proactively identifying and neutralizing advanced cyber threats. You will be the key architect of proactive security strategy, requiring an innovative approach, extensive experience in threat hunting, and deep technical expertise in understanding threat actors, attack vectors, techniques, and tactics. You will also contribute to incident response processes, collaborate with internal teams and external partners, and provide executive-level communications on significant threats and incidents.

Key Responsibilities:

• Lead initiatives to detect and analyze advanced threats within the organization using threat intelligence, big data analytics, and advanced monitoring techniques.
• Develop and refine threat hunting and defense strategies, playbooks, and procedures to improve our incident response capabilities.
• Collaborate with cross-functional teams to enhance threat hunting methodologies, leveraging both internal and external intelligence sources.
• Work closely with incident response, forensics, and SOC teams to integrate threat findings and strengthen detection capabilities.
• Assess and recommend new cybersecurity technologies and techniques to optimize our threat hunting and defense efforts.
• Analyze threat data from various sources to identify indicators of compromise (IOCs) and understand the tactics, techniques, and procedures (TTPs) of cyber threats.
• Communicate findings, trends, and recommendations to both technical teams and executive leadership.
• Produce timely, accurate reports on threat hunting activities, findings, and recommended actions for stakeholders and management.
• Analyze and convey the severity of security breaches, explaining risks and consequences to non-technical stakeholders, and develop effective mitigation strategies.
• Stay current on industry trends, emerging threats, and best practices to continuously enhance our threat defense capabilities.

Qualifications and Requirements:

• A Master's or Bachelor's degree in Information Technology, Information Systems Security, Cybersecurity, or a related field, or equivalent technical training.
• A minimum of four years of professional experience in information security, cyber defense operations, incident response, or a related domain in large organizations, with a strong technical background.
• Proven experience in Threat Hunting and Incident Response.
• Expertise in malware analysis and malicious artifact investigation, utilizing both static and dynamic analysis techniques.
• Strong knowledge of threat intelligence frameworks (such as MITRE ATT&CK/D3FEND), methodologies, and tools. Familiarity with security-related legal and regulatory requirements (e.g., BSI KRITIS, ISO 27001) is an advantage.
• Experience analyzing and interpreting security logs, network traffic, and endpoint data to detect and investigate potential security incidents.
• Relevant certifications such as GCIH, GCIA, GCFA, GDAT, eCTHP, OSCP, CISSP, or similar are highly desirable.
• A data-driven approach to executing strategies and actions.
• Experience in conducting complex analyses and investigations of security issues and assessing their business impact.
• Experience in the tech, security, or shipping industry is preferred but not required.
• Strong relationship-building skills, with the ability to coordinate activities and communicate professionally with IT, business partners, and external stakeholders.
• Excellent analytical and problem-solving skills.

Looking forward to hearing from you!