Enterprise cyber security division team lead

About us

BIOS Engineering & Trading PLC is an Information & Communication Technology (ICT) business firm that provides a wide range of IT products and services to various institutions and enterprises that support them automate, modernize & digitalize their business operations with established partnership with giant ICT companies worldwide and pool of specialized staff engineers, and broad technical expertise

Job Summary:

The Enterprise Cybersecurity Team Lead is responsible for overseeing the organization’s cybersecurity strategy, operations, and incident response. This role leads a team of cybersecurity professionals to protect enterprise systems, data, and infrastructure from cyber threats while ensuring compliance with industry regulations and best practices.

Key Responsibilities will include but not limited to:

1. . Cybersecurity Strategy & Governance

• Develop, implement, and enforce enterprise-wide cybersecurity policies, standards, and frameworks (NIST, ISO 27001, CIS Controls).
• Align security initiatives with business objectives, risk tolerance, and regulatory requirements.
• Report to executive leadership on cyber risks, threat landscape, and security posture.

2. Security Operations & Threat Management

• Lead Security Operations Center (SOC) activities, including SIEM monitoring, threat hunting, and incident response.
• Oversee vulnerability management, penetration testing, and red team/blue team exercises.
• Manage endpoint detection and response (EDR), firewalls, IDS/IPS, and cloud security tools.

3. Incident Response & Recovery

• Serve as the primary escalation point for major security incidents (breaches, ransomware, DDoS).
• Coordinate forensic investigations, containment, eradication, and recovery efforts.
• Conduct post-incident reviews (RCAs) and implement corrective actions.

4. Identity & Access Management (IAM)

• Oversee privileged access management (PAM), multi-factor authentication (MFA), and Zero Trust architecture.
• Ensure least privilege access controls across enterprise systems.

5. Compliance & Risk Management

• Ensure compliance with GDPR, HIPAA, PCI-DSS, SOX, and other regulatory standards.
• Manage third-party security assessments and vendor risk management.
• Lead internal and external security audits.

6. Security Awareness & Training

• Develop and deliver employee cybersecurity training programs (phishing simulations, best practices).
• Promote a culture of security awareness across the organization.

7. Emerging Threats & Technology Innovation

• Stay updated on advanced persistent threats (APTs), AI-driven attacks, and cloud security risks.
• Evaluate and implement next-gen security tools (SOAR, XDR, SASE, AI-based threat detection).

 

Qualifications & Skills:

• Education: Bachelor’s degree in Bachelor’s degree in computer science, information technology, SWE Security Management, Cybersecurity or related field
• Certifications such as:

CISSP (Certified Information Systems Security Professional)

CISM (Certified Information Security Manager)

CEH (Certified Ethical Hacker) or OSCP (Offensive Security Certified Professional)

CCSP (Certified Cloud Security Professional)

Year of experience – 4+ years

• Expertise in SIEM (Splunk, Microsoft Sentinel), EDR (CrowdStrike, SentinelOne), and cloud security (AWS/Azure/GCP).
• Strong knowledge of network security, encryption, IAM, and Zero Trust principles.
• Strong leadership, communication, and stakeholder management.
• Ability to translate technical risks into business impact for executives.
• Excellent communication for executive briefings and cross-department collaboration.
• Leadership: Exceptional people management, negotiation, and stakeholder engagement skills.
• Analytical Skills: Data-driven decision-making and problem-solving abilities.
• Ability to work under pressure in a 24/7 mission-critical environment
• SALARY – negotiable but Attractive