Senior Cybersecurity Specialist

The Senior Cybersecurity Specialist will be responsible for managing and enhancing the BMC’s cybersecurity posture by implementing, monitoring, and maintaining advanced security solutions. The role requires expertise in next‑generation firewalls, endpoint security EDR and XDR, email security, network detection and response (NDR), vulnerability assessment and penetration testing (VAPT), patch management, and cloud security. The ideal candidate will ensure compliance with industry best practices and regulatory requirements while proactively defending against cyber threats.

Key Responsibilities

Firewall Management : Configure, maintain, and optimize next‑generation firewalls, including Palo Alto, Fortinet, and Sophos, ensuring robust perimeter security.

Endpoint Security : Oversee the deployment and management of endpoint protection solutions (EDR and XDR) such as Trend Micro, Sophos, and Cortex, ensuring protection against malware, ransomware, and other threats.

Email Security : Implement and monitor email security solutions to prevent phishing, spam, and other email‑based cyber threats.

Network Security & NDR : Manage network security tools and Network Detection & Response (NDR) solutions to detect and mitigate advanced threats in real time.

Vulnerability Assessment and Penetration Testing : Conduct regular VAPT to identify security gaps and recommend corrective actions.

Patch Management : Develop and maintain an efficient patch management strategy to ensure timely updates and minimize security risks.

Security Information and Event Management (SIEM) : Administer and optimize SIEM solutions to monitor, analyze, and respond to security incidents effectively.

Web Application Firewall (WAF) : Configure and manage WAF solutions to protect web applications from attacks such as SQL injection and cross‑site scripting (XSS).

Azure Cloud Security : Implement and oversee security controls in Azure including identity and access management (IAM), encryption, and network security groups, ensuring compliance with cloud security best practices.

Incident Response : Lead cybersecurity incident response efforts, conducting root cause analysis and implementing remediation measures.

Security Compliance & Best Practices : Ensure adherence to cybersecurity frameworks (NCA, NIST, ISO 27001, etc.) and regulatory requirements.

Security Awareness & Training : Conduct training sessions to educate employees on cybersecurity best practices and threat mitigation.

Qualifications & Skills

Master’s or bachelor’s degree in Cybersecurity, Information Security, or a related field.

Professional certifications such as CISSP, CISM, CEH, CompTIA Security+, Palo Alto PCNSE, Fortinet NSE, and Azure Security Engineer or equivalent are highly desirable.

Minimum of 8‑15 years of experience in cybersecurity roles, with hands‑on experience in managing firewalls, endpoint security, and cloud security.

Strong knowledge of security technologies, including SIEM, NDR, WAF, and vulnerability management tools.

Experience with Azure security tools and configurations.

Familiarity with compliance frameworks and industry standards.

Excellent analytical, troubleshooting, and problem‑solving skills.

Strong communication and documentation abilities.

Familiarity with Zero Trust security models and implementation.

#J-18808-Ljbffr