PI
Embedded Systems Cyber Security Engineer designing and implementing security solutions. Involved in risk analysis, requirement management, and client consultation.
About the role
- Develop and implement a holistic security strategy for Expereo’s Enterprise Organization and Network Products and Services.
- Lead and mentor cross-functional teams across Enterprise IT security, Cloud Security, Network/ISP Security, Compliance, and Security Operations.
- Manage a team of security professionals and collaborate with Platform Engineering, Product, IT and Network Ops, HR, Legal/DPO, and senior leadership.
- Represent cybersecurity posture to management, regulators, auditors and key customers; provide quarterly Audit/Risk committee updates.
- Define and execute end-to-end security strategy covering Enterprise, Cloud Applications, and Network domains.
- Oversee global security policies, risk management, and regulatory alignment (ISO27001, SOC2, GDPR, NIS2/DORA, telecom regulations).
- Ensure security is embedded in product/service lifecycles (Internet access, SD-WAN, SASE, NaaS) and secure by design.
- Drive vendor/partner risk management and customer assurance processes.
- Conduct regular risk assessments, vulnerability tests, and threat analysis to identify and mitigate security risks.
- Own cloud security posture management, key rotation, least privilege, and baseline hardening for AWS (API Gateway, Cognito, IAM SigV4, EventBridge, etc.).
- Drive strong authentication, device posture, PAM, and customer federation; standardise scopes/claims for external APIs.
- Own security of backbone, edge, peering, and transit/last-mile networks and oversee network defences (DDoS, BGP/RPKI validation, DNS/DNSSEC).
Requirements
- 10+ years of experience in cybersecurity, with proven leadership of multi-domain security functions (Enterprise IT, Cloud, Networks, Compliance).
- Professional certifications (CISSP, CISM, CCSP, CCNP Security, or equivalent).
- Strong communicator with credibility at executive, technical, and regulatory levels; customer-focused mindset emphasizing trust, resilience, and service assurance.
- Information Security & Compliance Expertise: Deep knowledge of ISO 27001, SOC 2 Type II, NIS2, and DORA; experience leading audits and closing compliance gaps.
- Security Architecture & Engineering: Proficiency in secure SDLC, application security tooling (SAST/SCA/DAST), cloud security (CSPM/CIEM/CNAPP), and infrastructure hardening.
- Incident Detection & Response: Threat detection, SIEM/SOAR, incident response, low MTTD/MTTR; experience with purple teaming and tabletop exercises.
- Network Security: Routing security principles (BGP/RPKI), network segmentation, and DDoS mitigation.
- Identity Management: Implementing zero-trust and password-less solutions.
- Risk Management & Vendor Security: Ability to assess third-party risk, enforce contract controls, manage remediation, and provide continuous monitoring for key suppliers.
- Strategic yet hands-on leader able to set vision and oversee day-to-day operations.
Benefits
- Private Healthcare Plan
- Pension Plan
- Life Assurance
- Hybrid working
- 25 days Holiday
- Annual Company Bonus
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
BG
Bureau Veritas GroupCoordinador de Seguridad y Salud – Obra Industrial
Safety and Health Coordinator ensuring project safety in industrial settings at Bureau Veritas. Overseeing compliance, training, and risk management in construction environments.
CG
coeo GroupSecurity Manager
Security Manager at coeo ensuring implementation of group - wide security policies and managing IT security initiatives. Involving risk assessment, documentation, and development of business continuity management.
Sr. Manager Personnel Security overseeing a team of Specialists at Raytheon. Ensuring compliance and developing processes for personnel security in sensitive government programs.
Entry level Software Engineer in Aguadilla, PR focusing on secure software development and automation for cybersecurity. Collaborating with teams to enhance product compliance and security measures.
Associate Director of Cybersecurity Programs ensuring compliance and integrity of classified information systems. Guiding teams of security managers and collaborating with leadership teams to mitigate vulnerabilities.
Senior Security Engineer defining Plaid’s offensive security program and leading red team operations. Collaborating with stakeholders to enhance financial security measures and practices.
WD
Warner Bros. DiscoveryCybersecurity Engineer
Cybersecurity Engineer ensuring security best practices at Warner Bros. Discovery while managing enterprise security tools. Responsibilities include evaluating controls and implementing security technologies.
FC
Fresenius Medical CareProduct Security Expert
Product Security Expert in a hybrid role focusing on cybersecurity implementation for medical devices at Fresenius Medical Care in Germany. Collaborating with cross - functional teams to enhance product security.
EB
EQ Bank | Equitable BankLead, Cybersecurity Insider Risk Management
Lead Cybersecurity Insider Risk Management role protecting sensitive data at Equitable Bank. Joining a top FinTech in advancing insider risk strategy and cybersecurity capabilities.