- Company Name
- Chaucer Group
- Job Title
- Security Engineering Lead
- Job Description
-
**Job Title:** Security Engineering Lead
**Role Summary:**
Lead and scale a high‑performance Security Engineering team within a matrix IT organization. Own the execution of the security strategy, roadmap, and cybersecurity initiatives across on‑premises and cloud environments. Act as a senior liaison between engineering, product, architecture, and senior leadership to embed a security‑first culture and deliver secure, compliant solutions on time and within budget.
**Expectations:**
- Proven leadership in security engineering (5+ years senior‑level, 3+ years managing diverse teams).
- Strategic thinker with deep knowledge of enterprise security architecture, DevSecOps, cloud security, and incident response.
- Experience collaborating with information security, product, architecture, and service‑management functions.
- Ability to translate business goals into actionable security engineering initiatives and measurable outcomes.
**Key Responsibilities:**
- Develop and execute the organization‑wide Security Engineering strategy and technical road‑map.
- Mentor, coach, and manage a team of Senior Security Engineers; set clear goals, empower ownership, and foster continuous learning.
- Secure infrastructure across on‑prem and cloud platforms, including secure configuration, vulnerability management, and access controls.
- Partner with Architecture, Engineering, Product, and Service Management to deliver secure product features and infrastructure changes.
- Oversee incident response support, threat detection enhancements, SIEM configuration, and network analysis tooling.
- Lead cross‑functional risk assessment, identify tool/process risks, and define mitigation procedures.
- Manage vendor relationships: review performance against KPIs, ensure compliance with industry standards, and negotiate contract terms.
- Maintain technical delivery schedules, ensuring high‑quality, budget‑constrained outputs.
- Communicate progress, challenges, and risk status to senior leadership and stakeholders.
- Advocate a security‑first mindset across teams, driving standardisation and simplification of security practices.
**Required Skills:**
- Technical: Cloud security (AWS/Azure/GCP), network security, secure coding principles, CI/CD pipeline hardening, IAM, encryption, SIEM/ELK, threat intelligence, incident response.
- Management: Team leadership, coaching, project management, strategic planning, stakeholder engagement, risk management, budget oversight.
- Soft: Strong communication, stakeholder influence, problem‑solving, resilience, adaptability, vision casting.
**Required Education & Certifications:**
- Bachelor’s (or equivalent) in Computer Science, Information Security, or related field; Master’s preferred.
- Relevant certifications: CISSP, CISM, CISA, CEH, CCSP, or equivalent cloud security / incident response credentials.
---