Senior Cyber Security Engineer

“House of Shipping provides business consultancy and advisory services for Shipping & Logistics companies. House of Shipping's commitment to their customers begins with developing an understanding of their business fundamentals.

Currently House of Shipping is looking to identify a high caliber Cyber Security Senior Engineer.

Job Purpose:

The Cyber Security Senior Engineer will be part of a fast-paced Cybersecurity team and cover broad aspects of House of Shipping security operations, supporting the design, implementation and daily management of security operations.

Responsibilities and Accountabilities:

The principal areas of responsibility are as follows:

• Manage critical incidents and challenges as the focal point of contact for major incidents. Coordinate with other departments during critical incidents and drive post-incident reviews and formulate preventive strategies.
• Detect, identify, and respond to possible cyber-attacks, intrusions, anomalous and misuse activities as well as evaluate incident triage activities to ensure optimum incident resolution including the ownership of escalated incidents.
• Analyse network traffic and system data to detect potential threats to resources and provide recommendations for remediation. Conduct analysis that encompasses defining the scope, urgency, and potential impact.
• Perform correlation of security incidents and events to build threat detection and prevention capabilities, baselining network traffic and host activity across the enterprise.
• Manage and document the incident throughout its cycle, including tracking and documenting incidents from initial detection through final resolution. Update the knowledge base, preventative controls, and standards operating procedures.
• Executing incident trend analysis, reporting and assessing the impact on data and infrastructure as a result of cyber incidents as well as responding to feedback from internal IT departments, business and audit operational performance against the defined metrics and goals.
• Designing and architecting robust security infrastructure that integrates endpoint firewalls, SIEM, and mail filtering solutions seamlessly across the organization's network.
• Creating advanced and granular security policies for endpoint firewalls, SIEM, and mail filtering systems, customizing rules to protect against evolving threats and compliance requirements.
• Employing advanced monitoring tools and techniques to analyze traffic, logs, and events generated by endpoint firewalls, SIEM, and mail filtering systems, conducting sophisticated analysis for threat detection.
• Leading incident response efforts related to these security platforms, conducting in-depth forensic analysis, understanding attack vectors, and formulating strategies to prevent future occurrences.
• Ensuring seamless integration and compatibility between endpoint firewalls, SIEM, and mail filtering solutions within the broader security ecosystem, including SIEM and other security tools.

Education Qualification:

• Bachelor’s degree in engineering or computer science
• Technical certifications e.g. Microsoft, Proofpoint, Crowdstrike, Trend Micro, McAfee, Splunk, MISP, DLP.

Work Experience:

• Minimum of 8 years of dedicated work experience in various domains of Cybersecurity.
• Experience working in cross-functional and interdisciplinary teams to solve complex problems.
• Experience in operating systems, networks, databases, and web application security with a focus on advanced preventative capabilities. Hands-on experience in technical analysis with a focus on cyber threats.
• Experience analyzing network traffic and host activities for potential attack vectors and developing mitigation strategies.
• Experience in advanced technical analysis.
• Experience in gathering a predictive understanding of adversarial strategies, priorities, and overlapping interests.
• Experience in technical writing such as event bulletins, cyber digests, and quarterly summary reports.

Preferred:

• Technology agnostic certifications e.g. CISM, CISSP, CRISC, OSCP, GCIH, FOR508.

Ideal Candidate Skills:

• Problem solving skills and ability to work under pressure.
• Has a “can do” attitude, positive thinker.
• Deductive reasoning/ critical thinking
• Able to react proactively to changing business demands.
• Self-motivated with a high level of initiative and ability to work independently.
• Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.
• Passionate about cyber-security, eager to continuously learn and develop.