CrawlJobs Logo

Lead Information Security Engineer

nicollcurtin.com Logo

Nicoll Curtin

Location Icon

Location:
Ireland

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

My client is seeking an experienced Lead Information Security Engineer to support its Shadow IT and Data Protection programme. This role focuses on governance, enforcement, and escalation for unapproved SaaS and cloud applications, helping the business manage data security and third-party risk while balancing operational impact. The role will be an initial 12 month day rate contract with the requirement to be onsite 2-3 days a week.

Job Responsibility:

  • Own key elements of the Shadow IT enforcement and governance process
  • Define and operate a blocking and escalation framework for unapproved applications
  • Assess risk based on data sensitivity, access, and exposure
  • Manage exceptions, unblock requests, and high-impact escalations
  • Document decisions clearly, including technical impact and policy alignment
  • Work closely with security, technology, legal, privacy, and business teams
  • Track and report Shadow IT metrics, trends, and outcomes
  • Contribute to the ongoing maturity of a scalable Shadow IT governance model

Requirements:

  • Strong background in information security engineering within large environments
  • Hands-on experience with security governance, data protection, and risk management
  • Exposure to SaaS, cloud applications, and third-party risk
  • Confidence making and defending risk-based decisions
  • Experience with policy interpretation, enforcement, and escalation management
  • Strong analytical and documentation skills

Nice to have:

  • Experience with CASB, SSPM, or DSPM
  • Cloud security exposure
  • Automation or data analytics experience (e.g. Power BI, Alteryx, Power Automate)
  • Scripting, APIs, or application development experience

Additional Information:

Job Posted:
May 05, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Nicoll Curtin - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead Information Security Engineer

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

This role is your opportunity to lead the charge in maturing e2Open’s security p...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A proven track record in SIEM operations, vulnerability management, and incident response
  • Hands-on experience configuring and running security tools
  • Strong automation skills (e.g., scripting, orchestration)
  • The ability to lead through influence, guiding teams to adopt better practices
  • Experience navigating the challenges of complex, fast-changing environments (M&A exposure a plus)
  • Formal qualifications (CISSP, CISM, or equivalent) are valued
Job Responsibility
Job Responsibility
  • Configure, tune, and operate SIEM platforms to improve detection, response, and visibility
  • Lead vulnerability scanning and remediation
  • Take point in managing security incidents — from detection through investigation and resolution
  • Run and maintain key security tools
  • Drive automation-first approaches
  • Collaborate with engineering and IT teams to embed security into operations and culture
  • Help shape the roadmap for security maturity within e2Open
Read More
Arrow Right

Security Chapter Lead

Lead our security strategy, governance, and operations across a consortium-based...
Location
Location
Luxembourg , Leudelange
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Computer Science, or related field
  • CISSP, CISM, CISA preferred
  • 10+ years of experience in information security
  • Strong knowledge of security frameworks (NIST CSF, CIS Controls, OWASP Top 10)
  • Proven leadership of cross-functional security teams in complex environments
  • Excellent communication, stakeholder management, and decision-making skills
Job Responsibility
Job Responsibility
  • Define and execute the organization's security strategy, roadmap, and governance framework
  • Lead and organize the Security Office, collaborating with cross-functional squads and chapters
  • Establish and enforce security policies, standards, and compliance with regulations
  • Drive security architecture, engineering, and adoption of security-by-design principles
  • Oversee security awareness, training programs, and promote a culture of security-first thinking
  • Ensure compliance with regulatory and contractual security requirements
  • Lead security operations, monitoring, and incident response, including the Security Incident Response Team
What we offer
What we offer
  • Access to Sopra Steria training and personal development academy
  • Company car lease or mobility budget
  • Company laptop and mobile phone
  • Private health insurance coverage
  • Meal vouchers
  • Social security and pension plan
  • Competitive salary
  • 26 holiday days
  • Fulltime
Read More
Arrow Right

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
  • 10+ years of professional experience in cybersecurity, systems engineering, or information assurance
  • Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
  • DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
  • Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
  • Hands-on experience implementing Just-In-Time (JIT) access workflows
  • Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
  • Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
  • Ability to lead or oversee the efforts of less senior staff as required by program needs
Job Responsibility
Job Responsibility
  • Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
  • Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
  • Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
  • Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
  • Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
  • Support Authority to Operate (ATO) efforts through security control implementation and technical validation
  • Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
  • Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture
Read More
Arrow Right

Engineering Response Lead Engineer

Aruba, an HPE Company, is a leading provider of next-generation network access s...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 5+ years experience
  • Experience in LAN, WAN, cloud technologies, Linux, virtualization, scripting, and security
  • Python, C, C++, Javascript
  • Deep knowledge of routing, switching and security architecture and protocols
  • Expert level experience and understanding of protocols involved in networking, security and internet like - BGP, OSPF, EAPoL, ARP, VLAN, DHCP, VRRP, subnetting, ACL, routing, VRF, DNS, TCP, UDP, HTTP, IKE, IPSEC, HTTPS, proxies, load balancing, VoIP, SNMP, REST, JSON
  • Experience working with cloud platforms such as AWS, Azure, GCP and understanding vendor specific cloud computing techniques like Transit Gateway, VPC, Azure virtual WAN, Direct Connect
  • Experience in designing and architecting secure, resilient networks
  • Knowledge of security and vulnerability practices
  • Expertise in performance related tuning and deep packet level debugging
Job Responsibility
Job Responsibility
  • You will be called for engineering assistance by the highest level of services teams to investigate, debug and resolve complex technical issues
  • You will audit the overall architecture, deployment and configuration best practices in the SASE setup
  • You will troubleshoot customer environments to triage the issue and determine the root cause
  • You will maintain deep technical understanding of Silver Peak and other related HPE product features to deliver timely engineering response on critical technical issues
  • You will isolate customer issues and work with respective engineering SMEs to root cause and resolve product related issues through immediate workarounds and proper software fixes
  • You will document reoccurring issues to help Services team identify issues efficiently
  • You will aid Product Management by providing feedback on improving debug features on the SASE product family
What we offer
What we offer
  • Comprehensive suite of benefits that supports physical, financial and emotional wellbeing
  • Personal & Professional Development programs
  • Inclusive working environment
  • Flexibility to manage work and personal needs
  • Fulltime
Read More
Arrow Right

Engineering Response Lead Engineer

Aruba is an HPE Company, and a leading provider of next-generation network acces...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 5+ years experience
  • Experience in LAN, WAN, cloud technologies, Linux, virtualization, scripting, and security. Python, C, C++
  • Deep knowledge of routing, switching and security architecture and protocols
  • Expert level experience and understanding of protocols involved in networking, security and internet like - BGP, OSPF, EAPoL, ARP, VLAN, DHCP, VRRP, subnetting, ACL, routing, VRF, DNS, TCP, UDP, HTTP, IKE, IPSEC, HTTPS, proxies, load balancing, VoIP, SNMP, REST, JSON
  • Experience working with cloud platforms such as AWS, Azure, GCP and understanding vendor specific cloud computing techniques like Transit Gateway, VPC, Azure virtual WAN, Direct Connect
  • Experience in designing and architecting secure, resilient networks
  • Knowledge of security and vulnerability practices
  • Expertise in performance related tuning and deep packet level debugging
  • Highly organized and effective communicator who can explain complex technical issues and participate in technical discussions
Job Responsibility
Job Responsibility
  • You will be called for engineering assistance by the highest level of services teams to investigate, debug and resolve complex technical issues
  • In investigating the technical issues, you will audit the overall architecture, deployment and configuration best practices in the SASE setup
  • You will troubleshoot customer environments to triage the issue and determine the root cause
  • By maintaining deep technical understanding of Silver Peak and other related HPE product features you will be owning the technical relationship with the Services and account team to deliver timely engineering response on critical technical issues
  • You will provide prompt feedback to customer issues and help engineering management maintain high service level objectives with services team
  • You will isolate customer issues and work with respective engineering SMEs to root cause and resolve product related issues through immediate workarounds and proper software fixes as required
  • You will document reoccurring issues to help Services team identify issues efficiently
  • You will aid Product Management by providing feedback on improving debug features on the SASE product family
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Flexibility to manage work and personal needs
  • Fulltime
Read More
Arrow Right

Principal Security Engineer

We’re seeking a Principal Security Engineer with deep expertise in cloud securit...
Location
Location
United States , San Francisco
Salary
Salary:
136000.00 - 241000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in security engineering or architecture roles
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field from a reputable institution
  • Deep expertise in cloud platforms (particularly AWS), including infrastructure-as-code (e.g., Terraform, CloudFormation)
  • Strong experience in secure software development and application security (e.g., OWASP Top 10, SAST, DAST, threat modeling)
  • Experience designing and implementing zero-trust architectures, secure API gateways, and identity/access controls
  • Proficient in scripting or development languages (e.g., Python, Go, JavaScript) and secure coding practices
  • Demonstrated leadership in cross-functional security initiatives and technical mentorship
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Design and implement secure architectures for applications, APIs, microservices, and containerized workloads
  • Develop and enforce application security best practices across SDLC
  • partner with DevOps and engineering teams to integrate security into CI/CD pipelines
  • Conduct threat modeling, security design reviews, and risk assessments for new and existing systems
  • Evaluate and implement cloud security tools, controls, and frameworks (e.g., CSPM, CWPP, IAM, KMS, logging, and monitoring)
  • Provide technical leadership and mentorship to security engineers, software developers, and DevOps personnel
  • Lead response to complex security incidents or architectural flaws
  • conduct root cause analysis and recommend strategic remediations
  • Contribute to and influence security policies, standards, and governance
  • Stay current with emerging threats, vulnerabilities, and security technologies, advising stakeholders on evolving risks and mitigations
  • Fulltime
Read More
Arrow Right