Role Overview Currently seeking a highly qualified, skilled and motivated Senior Security Engineer to join our Information Security Operations, Cyber Threat Management Team. This role is critical in defending the organization against Cyber threats through proactive threat detection, intelligence gathering, vulnerability and risk management. The ideal candidate will bring deep technical expertise, strategic thinking, and leadership to drive continuous improvement in our security posture, with a strong understanding of the supply chain and logistics industry. Key Responsibilities As a seasoned professional your key responsibilities will entail overseeing advanced investigation and proactive threat operations. You will own deep incident scoping, correlation across telemetry sources, threat hunting and intelligence-driven prioritization, operational remediation coordination with IT/app teams, and controlled execution of operational security changes to reduce risk, dwell time, and business impact. Security Intelligence & Threat Management Lead and/or overseeing the development and execution of security intelligence programs to identify emerging threats and attack vectors. Oversee threat management activities including threat hunting and analysis of advanced persistent threats (APTs). Collaborate with internal and external stakeholders to enrich threat intelligence feeds and apply contextual analysis. Vulnerability Management Manage the end-to-end vulnerability and risk management lifecycle, including identification, assessment, prioritization, remediation, and reporting. Ability to utilize and manage core security tools (SIEM, EDR, MDR, SOAR platforms), identify opportunities for automation of routine tasks, and implement security controls to safeguard infrastructure. External Attack Surface Management Monitor and assess the organization’s external digital footprint to identify exposed assets and potential attack vectors. Assess security implications of common ports (e.g., 443 (HTTPS), 22 (SSH), 3389 (RDP), 53 (DNS), 445 (SMB)) and automate network security controls. Work on firewall rule reviews, segmentation strategies, and security policy enforcement. Implement tools and processes to continuously discover, classify, and secure internet-facing assets. Coordinate incident response and containment efforts to minimize impact and ensure timely recovery. Operational Leadership Develop and maintain standard operating procedures (SOPs) for threat hunting, vulnerability remediation, IOC investigation and incident response. Drive automation and integration of security tools, Incident & Change Mgmt Workflows, adoption of Artificial Intelligence technologies to improve operational efficiency as needed. Reporting & Metrics Ability to create, refine, and implement new detection rules and signatures based on hunt findings and new threat intelligence to improve automated defenses. Ability to analyze large datasets and correlate information from disparate sources (endpoints, cloud environments, network traffic) to identify suspicious patterns and anomalies indicative of attacker tactics, techniques, and procedures (TTPs). Qualifications Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience 10+ years of experience in Information Technology, with at least 7+ years in Security Operations, Threat Hunting, or Cyber Threat Management Must possess CCSP certification; preferred certifications (level-appropriate): SC-200, AZ-500, CISSP, GIAC (GCIH, GCIA, GCED), OSCP Expert-level Microsoft Sentinel (KQL), Defender XDR, and M365 security stack knowledge Strong understanding of cloud, identity, email, and SaaS attack vectors Advanced scripting and automation (PowerShell, KQL, Python) Strong knowledge of threat intelligence platforms including Mimecast, SentinelOne, Tenable, SIEM, EASM tools, and vulnerability management solutions. Experience with MITRE ATT&CK framework, threat modeling, and incident response. Thorough understanding of Industry Standards & Best practices in Networking, IAM, Endpoint, IOT, Infra & App Security, Email & Brand Protection, Asset & Data Protection