Qode
Information Technology and Services
CybersecurityLead
“Cybersecurity Lead at Qode. Skills: Offensive security, Defensive security, Incident response, Threat emulation. Lead Blue Team operations. Manage security detection platforms”
What You'll Achieve.
Improve detection coverage; Improve response automation; Improve control validation; Demonstrate risk reduction; Demonstrate readiness improvement
Industry & Context.
Root cause analysis
What They're Looking For.
Must Have
Bachelor’s degree in Computer Science, 8+ years cybersecurity experience, Leadership across Blue, Red, or Purple Team operations, Ownership of enterprise security detection tools, Understanding of MITRE ATT&CK, Understanding of Cyber Kill Chain, Understanding of threat emulation frameworks, Deep technical expertise in endpoint forensics, Deep technical expertise in network forensics, Deep technical expertise in cloud security monitoring, Deep technical expertise in scripting and automation, Deep technical expertise in security engineering, Lead incident response exercises, Lead purple team exercises
Nice to Have
Experience in enterprise environments, Experience in production-scale environments, Experience in SaaS environments, Experience in networking environments, Experience in hybrid cloud infrastructures, Familiarity with DevSecOps practices, Familiarity with CI/CD pipeline security, Familiarity with cloud-native monitoring, Mentoring Blue Team analysts, Managing tool life cycles, Managing vendor relationships, Exposure to purple team automation frameworks
What You'll Do.
Lead Blue Team operations
Manage security detection platforms
Configure security detection platforms
Tune security detection platforms
Enhance security monitoring tools
Improve detection pipelines
Improve incident response processes
Lead Red Team simulations
Measure defensive posture
Improve defensive posture
Transform findings into improvements
Oversee SIEM management
Oversee EDR/XDR management
Oversee SOAR management
Oversee IDS/IPS management
Oversee NDR management
Oversee TIPs management
Integrate detection tools
Ensure end-to-end visibility
Define log collection standards
Define log parsing standards
Define log correlation standards
Enhance alert accuracy
Reduce false positives
Drive detection rule tuning
Drive signature tuning
Drive use case tuning
Align detections with MITRE ATT&CK
Align detections with emerging threats
Collaborate with IT teams
Collaborate with Engineering teams
Integrate security telemetry
Oversee threat hunting
Oversee incident response playbook execution
Partner with DevOps teams
Partner with infrastructure teams
Embed security monitoring hooks
Design adversary emulation exercises
Conduct adversary emulation exercises
Test detection capabilities
Test response capabilities
Execute attack chains
Simulate targeted threats
Develop custom adversary scripts
Maintain custom adversary scripts
Provide post-exercise reports
Recommend defensive improvements
Operationalize detections
Lead incident response efforts
Co-lead incident response efforts
Coordinate containment
Coordinate investigation
Build incident response runbooks
Maintain incident response runbooks
Integrate lessons learned
Conduct root cause analysis
Drive measurable improvements
Integrate threat intelligence
Integrate forensic insights
Validate threat detection
Validate alert fidelity
Validate incident response readiness
Develop detection coverage roadmap
Develop response automation roadmap
Develop control validation roadmap
Serve as technical escalation point
Guide Blue Team staff
Translate technical results
Demonstrate risk reduction
Demonstrate readiness improvement
How You'll Work.
Team & Collaboration
IT and Engineering teams; DevOps and infrastructure teams; Red and Blue Teams; Executive stakeholders; Technical teams
Communication Scope
Executive insights; Technical results
Process & Methodology
Roadmap development
Applying for this Cybersecurity Lead role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Qode?
Real rants from real employees. Read before you apply.