Cybersecurity Engineer (Team Lead) at Velvot

Job Summary

• In this role, you will maintain hands on technical involvement in designing and securing our infrastructure while force-multiplying a team of security engineers.
• You will own the technical roadmap for our defensive capabilities and serve as the primary escalation point for complex security incidents, changes that increase productivity and profitability.

Key Responsibilities

• Lead the design of robust security architectures for on premise, cloud (AWS/Microsoft/Sophos etc), and hybrid environments.
• Evaluate and oversee the deployment of security tooling (SIEM, EDR, IDS/IPS) to ensure maximum threat visibility.
• Drive the adoption of automation to reduce manual toil and improve incident response times (e.g., automating phishing analysis).
• Conduct regular threat modeling sessions to identify gaps in the attack surface before they can be exploited.
• Conduct weekly reviews and career development planning for a team of security engineers.
• Prioritize engineering tickets and assign tasks based on individual strengths and bandwidth.
• Lead the recruitment process for new engineering talent, including technical screenings and culture-fit interviews.
• Serve as the Incident Commander during high-severity breaches, coordinating the technical response, containment, and root cause analysis.
• Oversee the lifecycle of vulnerability remediation collaborating with IT/DevOps to ensure patches are verified and deployed.
• Ensure engineering practices align with regulatory frameworks (SOC2, ISO 27001, HIPAA, GDPR).

Qualification

• Bachelor’s degree in Computer Science, Cybersecurity, or equivalent practical experience.
• 4 years of experience in Information Security, with at least 1–2 years in a lead capacity.
• Ability to explain complex technical risks (SQL injection) in terms of business impact (Customer data loss).
• Strong conflict resolution skills for negotiating security requirements with product/deadline-driven teams.

Required Technical Skills:

• Deep understanding of TCP/IP, Next-Gen Firewalls (Palo Alto, Fortinet, Sophos ), VPNs, and Zero Trust principles.
• Experience securing public cloud workloads (AWS Security Hub, Azure Sentinel, IAM policies, VPC flow logs).
• Expertise in tuning aggregation tools (Splunk, ELK, Datadog) to reduce noise and focus on high-fidelity alerts.