Cyber Architecture Team Lead

CYE is looking for a cyber architecture team lead to join our crew! The cyber architecture team is part of CYE’s professional services delivery department and is dedicated to helping drive CYE customers' cybersecurity maturity forward. This includes both conducting enterprise level organizations' white-box risk assessments, reviewing design issues or security controls configuration, and offering relevant mitigations to identified risk during penetration testing, executed by CYE’s red teamers.  As a cyber architecture team lead, you will be responsible for overseeing the team’s activities, validating engagements’ quality, creating new services and initiatives which will help our customers advance their cybersecurity program, and leading complex assessment and mitigation discussions with our clients.  

Responsibilities

• Lead and mentor a team of cyber experts, providing guidance and support on executing activities with CYE’s clients. 
• Perform architecture reviews on designed or deployed environments, identifying security flaws and recommending mitigation plans. 
• Collaborate with other departments to drive CYE’s product and services forward. 
• Determine KPIs to track team’s performance. 
• Create processes to validate delivery quality.  
• Develop, evaluate, and improve our clients’ security posture by elevating their infrastructure’s resilience and implementing best practice organizational procedures. 
• Develop mitigation plans and design practical implementations for security issues; e.g., firewall policies review, segmentation and segregation recommendations, Microsoft AD-tier model implementation, etc. 
• Research and advocate for new security solutions and technologies. 

Qualifications

• Proven leadership experience, with a track record of successfully managing and developing professional cybersecurity teams.  
• At least 5 years of hands-on experience with securing large organizational networks, including security controls, OS hardening, network devices’ security, etc. 
• Deep understanding of Microsoft IT infrastructure; i.e., AD, GPO, protocols. 
• Experience with consulting services and risk assessments. 
• Experience with securing cloud environments – AWS, Azure, GCP. 
• Excellent English communication skills.
• Knowledge of security controls; e.g., AV, EDR/XDR, DLP, device control, etc. 
• Experience with implementing security monitoring procedures and systems (SOC, SIEM, SOAR). 
• Experience as a CISO – advantage. 
• Familiarity with SCADA protocols and ICS system security. 
• Familiarity with security standards; e.g., SOC2, ISO 27001, ISO 27017 etc. 
• Familiarity with SaaS security and SaaS vendor assessments.

About UsCYE’s optimized cyber risk quantification platform and experts transform the way organizations manage cybersecurity. Using AI, machine learning, and data, CYE visualizes attack routes, quantifies cyber risk, provides mitigation plans, improves communication, and matures organizational cybersecurity. Founded in 2012, CYE is funded by EQT and 83North.