Senior Cyber Security Engineer
What's the role?
As a Senior Cybersecurity Engineer, you are part of our international Security Operations Centre (SOC) organization headquartered in Kuala Lumpur. You will help us to protect our critical assets in IT/IoT/OT by evergreening existing solutions and evaluating new ones via security engineering principles. You will work in close collaboration and partnership with our newly established Chief Cyber Security Officer organization, our Global IT Engineering teams, our Digital Software & Services teams, and our Legal and Data Protection organization and external service providers.
Who is Hilti?
We provide leading-edge tools, technologies, software and services for the global construction sector. Hilti is a multicultural workplace with 55 different nationalities committed to global teamwork.
Global IT within Hilti is a truly global team with main hubs in Buchs (Switzerland), Kuala Lumpur (Malaysia) and Plano/Tulsa (USA). All locations have highly competent teams who work very closely together. Hilti`s Global IT team is known for their focus on sustainable value creation by translating latest IT innovations into value creating solutions & services.
What does the role involve?
Senior Cyber Security Engineers play a key role in the cyber defense of the Hilti Group. You will manage cyber security solutions for the company.
You support protecting the digital assets of the company. You partner with our various IT Engineering, Digital, and Legal teams, and take global responsibility in selecting, implementing, and running security solutions for the Hilti Group feeding into our Security Operation Centre, while balancing business needs and risk mitigation.
This includes supporting global implementation projects for cyber security solutions, evaluating, selecting & managing vendors, designing, engineering and operating security solutions internally and/or together with vendors, providing 2nd level incident support as well as assisting crisis teams in incident-related escalations.
You perform continuous improvement activities on the services owned. You understand the threat landscape and advise our IT engineering and application teams on cyber risks and mitigation measures, and follow up on incidents together with the Security Incident Responders.
It is your role to guide the various IT Engineering and Digital teams on identifying and closing vulnerabilities. You will work closely with service lines to perform periodic review of rules and policies of security solutions. You lead and own all security engineering activities and take full responsibility of its performance. You show strong ownership in security implementation projects. You will improve documentation for all deployed solutions.
You will mentor, develop and train junior cyber security engineers. You will work in close collaboration with Security Incident Responders, Cyber Threat Intelligence Analysts and Cybersecurity Architects in the team and with colleagues in IT Operations to improve the overall security posture of Hilti.
What do we offer?
Show us what you’re made of and we’ll offer you opportunities to move around the business – to work abroad, experience different job functions and tackle different markets. It’s a great way to find the right match for your ambitions and achieve the exciting career you’re after.
We have a very thorough people review process, unlike any we know of in any other business. We can pair talent with opportunities - developing our people in their current roles or challenging them to work in new ways or in new places. It’s how we find the right fit, further our teams personally and professionally, get the best value for each employee and increase the job satisfaction. Additionally, we offer you a wide range of benefits.
Why should you apply?
We are building a leading SOC organization with highly automated and extremely adaptive capabilities using latest technologies. We work in classical IT environments but also in IoT and OT environments where we anticipate a lot of progress and capability building in the future. For this position, we are seeking creative, innovative, and open-minded people with a demonstrated ability to work both independently and in a global team setting. If you combine a strong analytical skillset with knowledge and experience in Cybersecurity technology and processes, and with excellent oral and written communication skills, you are exactly what we are looking for. We are seeking leaders and subject matter experts with a demonstrated ability to deliver best fitting solutions in a user-centric environment.
What you need is:
- Must Have
- Bachelor’s degree in computer science, information systems, engineering or a related technical discipline related to information security, cybersecurity, or computer network defense, Master’s degree would be preferred
- 5 – 7 years’ experience working as a cybersecurity engineer
- Strong analytical and problem-solving skills paired with excellent interpersonal and communication skills
- Strong know-how in cloud technologies (Azure, AWS)
- Strong scripting skills
- Experience with SIEM/XDR/SOAR/EDR solutions
- Experience with Vulnerability Management solutions
- Experience in working in a SOC/CDC environment
- Familiarity with the relevant NIST standards and framework
- Familiarity with the MITRE ATT@CK framework and the Cyber Kill Chain
- Good knowledge of security standards
- Experience in assessing external solutions
- CISSP certification
- Fluent in English (verbally and written)
- Good to have
- Working experience in the manufacturing industry
- Basic understanding security incident response processes
- Basic understanding of cyber threat intelligence processes
- Experience in conducting penetration testing
- A thirst to learn and challenge yourself
- Comptia Security+, RCCE, certification is a plus
Click through the 'Apply Now' button where you will be asked to upload your CV and answer a couple of short questions – the whole process should take around 90 seconds. If we like what we see, you'll be invited to a telephone interview.
If we don't have a suitable role for you at the moment, we will keep you in our talent pool for the future so your recruitment process might take a bit longer but we'll be sure to stay in touch.
Looking forward to hearing from you!