Description

Brain Station 23 PLC is looking for Cyber Security Lead who will be responsible for defining and executing the organization’s cybersecurity strategy, leading both internal defense initiatives and external consulting services such as penetration testing, vulnerability assessments, and compliance advisories. This role demands strong leadership, business acumen, and deep technical expertise to build a robust cybersecurity practice that aligns with organizational goals and global standards. 

Job Responsibilities

1. Strategic & Business Leadership 

• Develop short-term and long-term business plans for the cybersecurity division, covering consulting, managed security, and internal defense services. 
• Identify profitable service lines (e.g., penetration testing, compliance consulting, managed security services). 
• Present cybersecurity vision, initiatives, and performance metrics to CXO and Board-level stakeholders. 
• Prepare and manage annual budgets, forecasts, and ROI analyses for cybersecurity activities. 
   

2. Governance, Risk & Compliance (GRC) 

• Establish, maintain, and enforce cybersecurity policies and standards aligned with NIST CSF, GDPR, PCI DSS, and ISO 27001:2022. 
• Lead internal and external security audits, compliance assessments, and risk reviews. 
• Ensure continuous monitoring and improvement of organizational compliance posture. 
   

3. Technical Oversight 

• Supervise penetration testing, vulnerability scanning, and threat modeling initiatives. 
• Define methodologies, tools, and templates for test planning, execution, and reporting. 
• Oversee threat intelligence operations, SIEM monitoring, and incident response frameworks. 
• Stay updated with evolving cybersecurity trends, attack vectors, and mitigation techniques
   

4. Team Management & Capability Building 

• Lead and mentor cybersecurity professionals through structured development programs. 
• Define KPIs, performance metrics, and deliverables for the cybersecurity team. 
• Develop internal lab environments for simulations and testing. 
• Conduct regular training, workshops, and post-incident knowledge-sharing sessions. 
   

5. Technical Skills & Competencies 

• Security Frameworks: NIST CSF, CIS Controls, SOC 2, OWASP Top 10, ISO 27001:2022 
• Penetration Testing Tools: Metasploit, Burp Suite, Nmap, Wireshark, OWASP ZAP, Nessus, Kali Linux 
• Cloud & Infrastructure Security: AWS/Azure/GCP IAM, network segmentation, WAF, VPC security, container security 
• Vulnerability & Threat Management: CVSS scoring, patch management, threat modeling 
   

6. Certifications (Preferred) 

• OSCP (Offensive Security Certified Professional) 
• CEH (Certified Ethical Hacker) 
• Other relevant certifications in cybersecurity management or cloud security will be an advantage. 

Qualifications 

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field. 
• 5+ years of experience in cybersecurity with at least 2 years in a leadership or consulting role. 
• Proven track record in managing security operations, audits, or consulting engagements. 
• Excellent communication, analytical, and leadership skills. 

• Attractive Salary for deserving candidates
• Medical Coverage
• Salary review twice in a year
• Weekly two holidays
• Provident fund
• Two festival bonus
• Quarterly Performance Bonus
• WPPF.