Lead Threat Detection Engineer

Glocomms are with a globally leading Wealth Management firm in the search for an experienced Lead Threat Detection Engineer to drive the creation and engineering of advanced security solutions designed to detect and counteract cyber threats. This role will focus on building and implementing innovative threat detection systems that address threats not previously identified. The ideal candidate will have a robust technical background, a proactive approach to problem-solving, and a passion for developing novel security solutions.

Key Responsibilities:

Security Solution Engineering:

• Design, build, and engineer cutting-edge security solutions specifically aimed at detecting and mitigating novel and sophisticated cyber threats.
• Develop and deploy advanced threat detection systems that are tailored to the unique needs of firms environment.

Threat Detection Content Development:

• Create and maintain custom threat detection content, including detection rules, signatures, and alerts, to enhance the effectiveness of the firms security infrastructure.
• Develop innovative detection techniques and methodologies to identify previously unknown threats and attack vectors.

Innovative Threat Detection Strategies:

• Lead the development of new threat detection strategies and frameworks to address emerging threats and vulnerabilities.
• Collaborate with cross-functional teams to integrate and optimize these strategies within the firms existing security architecture.

Threat Intelligence and Analysis:

• Stay informed about the latest cyber threats, vulnerabilities, and attack trends relevant to the financial sector.
• Analyze complex threat data to continuously improve detection capabilities and adapt security solutions accordingly.

Leadership and Collaboration:

• Provide leadership and mentorship to a team of threat detection engineers, fostering an environment of innovation and excellence.
• Work closely with other cybersecurity teams, IT departments, and stakeholders to ensure seamless implementation and enhancement of threat detection solutions.

Incident Response and Continuous Improvement:

• Assist in the investigation and response to security incidents, leveraging advanced detection solutions to effectively identify and address threats.
• Evaluate and refine threat detection processes and solutions based on incidents learnt and the evolving threat landscape.

Documentation and Reporting:

• Develop and maintain detailed documentation for all threat detection content, security solutions, and incident response procedures.
• Generate and present comprehensive reports on the performance of threat detection systems, emerging threats, and strategic recommendations to senior management.

Qualifications:

Education: Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Advanced degrees or certifications (e.g., CISSP, CISM, or equivalent) are a plus.

Experience: Minimum of 7-10 years of experience in cybersecurity with a strong focus on threat detection and response. Proven experience in engineering and developing security solutions to detect cyber threats.

Technical Skills:

• Proficiency in security technologies and platforms, such as SIEM (e.g., Splunk, QRadar), IDS/IPS, and EDR.
• Strong knowledge of network protocols, operating systems, and programming/scripting languages (e.g., Python, PowerShell).
• Experience with threat intelligence platforms and advanced analysis tools.
• Analytical Skills: Exceptional analytical and problem-solving skills with the ability to translate complex information into actionable security solutions.
• Leadership: Demonstrated leadership abilities with experience managing and mentoring technical teams.
• Communication: Excellent written and verbal communication skills, capable of conveying technical information to both technical and non-technical stakeholders.