We are seeking a highly skilled and experienced Deputy Director with over 13 years of expertise in the IT industry, including 5 years of specialized experience in Cloud Security, and a deep understanding of the SAFE Agile framework. The ideal candidate will be responsible for ensuring the security of our cloud infrastructure while driving excellence in security engineering processes, handling the SIEM technologies implementation and management and participating actively in the SAFE Agile transformation of our IT operations. The role requires a combination of strong technical skills, leadership abilities, and a comprehensive understanding of security principles and best practices.

• Cloud Security Engineering:o Design, implement, and manage cloud security architecture across platforms like AWS, Azure, and Google Cloud.o Lead and contribute to the creation of secure cloud environments ensuring compliance with industry regulations (e.g., GDPR, HIPAA, NIST).o Oversee the identification, mitigation, and resolution of security vulnerabilities in cloud environments.o Implement and manage cloud-native security tools and best practices, including network security, identity & access management (IAM), encryption, and data protection.o Deploy and configure CSPM, DSPM, SaaS and other Security tools in cloud and SaaS environments.o Define security policies and compliance rules (CIS, NIST, GDPR, ISO 27001, etc.).o Integrate tools with cloud platforms (AWS, Azure, GCP) and SaaS applications.o Implement Role-Based Access Control (RBAC), SSO, and API security.o Set up automated remediation for cloud misconfigurations and data risks.o Monitor security posture and detect misconfigurations, threats, and risks.o Investigate security alerts and apply remediation actions.o Ensure compliance with regulatory and industry security standards.o Manage data discovery, classification, and encryption policies for DSPM.o Optimize security tools for performance and scalability.o Generate and present security posture reports to leadership.o Continuously update policies to address evolving cloud threats.

• Security Engineering Excellence:o Drive security engineering best practices across the organization and ensure security is integrated into all stages of security deployment and engineering tools.o Lead incident response and remediation for security breaches or threats.o Collaborate with DevOps and other teams to build secure pipelines and secure code practices.o Define and implement Key Performance Indicators (KPIs) for security performance and excellence, with a focus on measuring and improving security benchmarks across the organization.o Regularly monitor security KPIs, analyze performance, and adjust strategies to meet and exceed security benchmarks.o Evaluate and provide feedback on security engineering tools and technologies to ensure they meet organizational needs and improve overall security effectiveness.o Continuously assess and recommend new security tools and solutions to enhance security capabilities and improve the security posture.o Provide feedback to engineering teams on tool performance and suggest improvements for better integration and efficiency.

• Agile Leadership & SAFE Implementation:o Lead and facilitate the SAFE Agile transformation process for IT security teams, ensuring the alignment of security with Agile principles and practices.o Act as a Security Champion within Agile teams to ensure security is embedded within every phase of the development lifecycle.o Collaborate closely with product owners, Scrum Masters, and cross-functional teams to ensure security requirements are prioritized and met in Agile ceremonies.o Conduct retrospectives and continuous improvement activities to enhance Agile security processes.

• Collaboration & Strategy:o Collaborate with IT leadership to define and execute a comprehensive security strategy aligned with business goals.o Partner with internal teams and external vendors to ensure effective threat intelligence sharing, risk management, and compliance.o Act as a mentor and guide for junior security engineers and promote knowledge-sharing best practices.

• Regulatory & Compliance Standards:o Ensure that all security practices adhere to global regulatory and compliance standards such as ISO 27001, SOC 2, PCI-DSS, etc.o Conduct risk assessments and audits to identify potential vulnerabilities or non-compliance risks.

• Continuous Learning & Innovation:o Stay up-to-date with the latest trends, threats, and best practices in cloud security, IT security, and Agile methodologies.o Lead security training initiatives to promote a security-aware culture across the organization.

• Experience:o 13+ years of experience in IT, with at least 5 years in Cloud Security engineering.o 5+ years of experience in SAFE Agile processes and implementations.o Proven track record in security engineering, architecture, and cloud security implementations across multiple platforms.

• Experience with security governance, risk management, and compliance in a multi-cloud environment.• Familiarity with secure coding practices and DevOps/DevSecOps integration.• Experience in managing security incidents and conducting post-mortem analyses.• Knowledge of industry trends, emerging security threats, and innovative cloud security practices.

• Technical Skills:o Advanced knowledge of cloud platforms (AWS, Azure, Google Cloud) and associated security services.o Strong knowledge on the CSPM, DSPM, SaaS Security suites of Cloud implementation, management and governance.o Good knowledge on the SIEM tools implementation, management and troubleshooting.o Expertise in security frameworks, tools, and technologies (e.g., firewalls, VPNs, intrusion detection systems, IAM, etc.).o Proficiency in secure coding practices, vulnerability assessments, penetration testing, and security monitoring tools.o Hands-on experience with automation, DevSecOps practices, and CI/CD pipelines for secure development.

• Certifications:o CISSP (Certified Information Systems Security Professional) or equivalent security certifications.o AWS Certified Security Specialty, Azure Security Engineer, or similar cloud security certifications.o Certified SAFe Program Consultant (SPC) or equivalent Agile certifications are a plus.

• Leadership & Soft Skills:o Proven leadership and mentoring abilities, especially within Agile teams.o Strong communication skills, with the ability to explain complex security issues to non-technical stakeholders.