Cybersecurity Engineer (Team Lead) at Velvot

Job Summary


In this role, you will maintain hands on technical involvement in designing and securing our infrastructure while force-multiplying a team of security engineers.
You will own the technical roadmap for our defensive capabilities and serve as the primary escalation point for complex security incidents, changes that increase productivity and profitability.


Key Responsibilities


Lead the design of robust security architectures for on premise, cloud (AWS/Microsoft/Sophos etc), and hybrid environments.
Evaluate and oversee the deployment of security tooling (SIEM, EDR, IDS/IPS) to ensure maximum threat visibility.
Drive the adoption of automation to reduce manual toil and improve incident response times (e.g., automating phishing analysis).
Conduct regular threat modeling sessions to identify gaps in the attack surface before they can be exploited.
Conduct weekly reviews and career development planning for a team of security engineers.
Prioritize engineering tickets and assign tasks based on individual strengths and bandwidth.
Lead the recruitment process for new engineering talent, including technical screenings and culture-fit interviews.
Serve as the Incident Commander during high-severity breaches, coordinating the technical response, containment, and root cause analysis.
Oversee the lifecycle of vulnerability remediation collaborating with IT/DevOps to ensure patches are verified and deployed.
Ensure engineering practices align with regulatory frameworks (SOC2, ISO 27001, HIPAA, GDPR).


Qualification


Bachelor's degree in Computer Science, Cybersecurity, or equivalent practical experience.
4 years of experience in Information Security, with at least 1 - 2 years in a lead capacity.
Ability to explain complex technical risks (SQL injection) in terms of business impact (Customer data loss).
Strong conflict resolution skills for negotiating security requirements with product/deadline-driven teams.


Required Technical Skills:


Deep understanding of TCP/IP, Next-Gen Firewalls (Palo Alto, Fortinet, Sophos ), VPNs, and Zero Trust principles.
Experience securing public cloud workloads (AWS Security Hub, Azure Sentinel, IAM policies, VPC flow logs).
Expertise in tuning aggregation tools (Splunk, ELK, Datadog) to reduce noise and focus on high-fidelity alerts.