Senior Security Engineer - Blue Team

We are seeking a highly skilled and experienced Senior Security Engineer - Blue Team Specialist to join our dynamic cybersecurity team. As a Senior Security Engineer, you will be responsible for strengthening our organization's security posture by implementing proactive defense strategies, conducting continuous monitoring, and responding to security threats and incidents.
Your expertise in cyber threat intelligence, security monitoring, incident response, and security operations will play a pivotal role in protecting our infrastructure, applications, and systems. This role requires a proactive, analytical individual with a passion for defensive security, threat hunting, and improving security frameworks. It's a bonus if you have experience in assessing, evaluating, and ensuring compliance with security policies, standards, and regulations.
What You'll Do:

• Threat Detection and Monitoring: Develop and maintain security monitoring solutions to detect malicious activity, unauthorized access, and system vulnerabilities.
• Continuously monitor and analyze security alerts and logs from SIEM, XDR/EDR, IDS/IPS, and other security tools.
• Incident Response and Threat Hunting: Lead investigations into security incidents, conduct forensic analysis, and mitigate cyber threats. Proactively hunt for adversary tactics, techniques, and procedures (TTPs) to identify potential security risks.
• Security Operations and Defensive Strategies: Implement and enhance security measures to protect against cyber threats, including intrusion detection, endpoint security, and network segmentation.
• Threat Intelligence and Analysis: Gather and analyze threat intelligence from various sources to understand emerging threats and improve the organization's defensive capabilities.
• Security Awareness and Training: Develop training programs and security awareness initiatives to educate employees on cybersecurity threats and best practices.
• Vulnerability Management and Patch Deployment: Work closely with IT and DevSecOps teams to identify, prioritize, and remediate vulnerabilities in systems, applications, and infrastructure.
• Security Tooling and Automation: Evaluate and integrate security tools to enhance detection and response capabilities, including automation of security operations.
• Collaboration with Security Auditors: Experience working with security audit teams to analyze gaps and enhance security posture.

• Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Relevant certifications such as GCIA, GCIH, CISSP, or CEH are highly desirable.
• Experience: Minimum of 5 years of hands-on experience in blue team operations, security operations center (SOC), incident response, threat hunting, or security engineering.
• Technical Proficiency: Strong expertise in SIEM, XDR/EDR, IDS/IPS, firewalls, WAFs, and other security monitoring and defensive tools.
• Networking and Systems: Deep understanding of network security, endpoint protection, cloud security, and security architectures.
• Cybersecurity Knowledge: In-depth understanding of attack vectors, threat modeling, and security defense strategies.
• Security Audit and Compliance Awareness: Familiarity with security compliance frameworks such as ISO 27001, NIST, PCI-DSS, CIS Controls, and regulatory requirements.
• Problem-Solving Skills: Excellent analytical and troubleshooting abilities to detect and respond to security incidents effectively.
• Communication Skills: Strong verbal and written communication skills, with the ability to convey complex security topics to technical and non-technical stakeholders.
• Team Player: Ability to collaborate with cross-functional teams, including IT, development, and compliance teams, to strengthen security defenses.