About the role
The role involves managing cybersecurity operations, including security monitoring, incident response, and vulnerability management. The manager will oversee security tools, support compliance, and collaborate with IT and business teams to improve security posture.
TransportOnsite
Key Responsibilities
- Manage day‑to‑day cybersecurity operations.
- Oversee security monitoring and threat detection activities.
- Ensure continuous monitoring of alerts, events, and incidents.
- Maintain cybersecurity procedures, standards, and documentation.
- Coordinate incident response with internal teams and external vendors.
- Conduct root cause analysis and prepare post‑incident reports.
- Manage threat intelligence and proactive threat hunting.
- Oversee vulnerability assessments and remediation efforts.
- Ensure timely patching and security hardening across systems and networks.
- Track and report cybersecurity risks and remediation progress.
Requirements
- Bachelor's degree in Cybersecurity, IT, Computer Science, or related field.
- 5–8 years of experience in cybersecurity or IT security operations.
- Experience in SOC operations and incident response.
- Exposure to cloud security (Azure, AWS, or GCP) preferred.
- Strong knowledge of security operations, incident response, vulnerability, endpoint, network, IAM, and cloud security.
- Hands‑on experience with Microsoft Defender, SIEM, EDR/XDR, and vulnerability management tools.
- Familiarity with KQL, threat hunting, and security analytics is a plus.
- Strong analytical and problem‑solving skills.
- Effective communication and stakeholder management skills.
- Proven crisis and incident management capability.
- Ability to work under pressure and manage multiple priorities.
- Continuous improvement mindset.
- Relevant certifications (preferred): CISSP, CISM, CEH, Microsoft, ISO 27001.