Cyber Security Manager - Platform Security

About us 

At Dyson, we are not just creating innovative, technology-enabled products; we are also breaking new ground in cybersecurity. Our products are becoming more advanced and interconnected, which means we face a constantly evolving cyber threat landscape. This requires a highly skilled candidate to join our team, with a passion for staying ahead of emerging threats and keeping our products secure. 

We take a proactive approach to cybersecurity. We do not wait for threats to emerge; we anticipate them and respond with innovative solutions. This means that at Dyson, you will have the opportunity to work with innovative technologies, like artificial intelligence and machine learning, to protect our products and customers. 

You will be part of a team of cybersecurity experts, utilizing the latest tools and technologies to identify and respond to threats in real-time. You will work closely with our engineering and product teams to ensure that security is integrated into every aspect of our business. 

Join our team at Dyson, and you will be at the forefront of cybersecurity, working on some of the most innovative and advanced products in the industry. You will have the opportunity to develop your skills and knowledge, collaborating with a talented team of experts to ensure we are always secure. If you are passionate about cybersecurity and looking for an exciting and challenging role, Dyson is the place for you. 

About the role 

As a Cyber Security Engineer at Dyson, you will play a key role in implementing Zero Trust security principles to protect our innovative technology-enabled products. Working within our collaborative, global technology team, you will lead the charge in designing, developing, and implementing robust security solutions that defend our systems and applications against cyber threats. 

You will be responsible for ensuring that procured or developed security solutions are implemented properly and function as intended across the organization. You will also work closely with colleagues across the Cyber Security and Risk (CSR) function to ensure that our systems are secure and protected against evolving threats. 

In this role you will, 

• Develop, implement, and maintain security technologies, including open-source solutions, identity and access management, content delivery and web security management, intrusion detection systems, endpoint detection and response systems, and next-generation threat hunting platforms; ensuring that solutions protect information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss. 

• Deploy advanced threat hunting platforms to aggregate and analyse security logs and events from various sources, build parsers, configure and fine-tune rules, alerts, and correlation policies to identify and prioritize potential security incidents. Continuously innovate and enhance the orchestration and automation framework to adapt to evolving cyber threats and business requirements. 

• Lead the design, development, and maintenance of secure data pipelines and infrastructure, ensuring the efficient collection, storage, and processing of security-related data, and collaborate with cross-functional teams to define data requirements, ensuring the availability of relevant and high-quality data for security analysis and decision-making. 

• Implement data integration solutions, leveraging cutting-edge technologies and frameworks to connect disparate data sources; and continuously optimize data engineering processes to enhance performance, scalability, and reliability. 

• Collaborate seamlessly with stakeholders to perform in-depth data analysis and correlation to identify patterns, anomalies, and potential security threats. Employ statistical techniques, data mining, and machine learning algorithms to extract actionable insights from security data. 

• Develop visualizations and reports that effectively communicate complex security findings to stakeholders. 

• Establish data governance frameworks and policies to ensure the confidentiality, integrity, and availability of security-related data, collaborate with legal and compliance teams to implement and manage data privacy and access controls to safeguard sensitive security data. 

• Forge ahead with automation and orchestration by unleashing your coding prowess to develop awe-inspiring scripts, utilities, and automation workflows that streamline security-related tasks. 

• Evaluate, implement, and seamlessly integrate ground-breaking security tools and technologies to elevate our security capabilities. 

• Identify, analyse and resolve system weaknesses, and collaborate synergistically with infrastructure and operations teams, collectively implementing security controls at the infrastructure level, leaving no room for compromise. 

• Troubleshoot, identify, and resolve technical issues related incidents, problems, and changes as required, including onboarding of users and applications. 

• Provide level 2 and level 3 support, as well as coach other members of the organization on the best practices that should be followed. 

• Produce technical documentation such detailed design, configuration guides, etc. 

• Stay at the forefront of emerging security threats, vulnerabilities, and industry best practices, and seamlessly incorporate them into the development process. 

About you 

Looking for a cybersecurity challenge that will test your skills and push your boundaries? Join our team as a Cyber Security Engineering specialist, where you will be responsible for designing, implementing, and customizing advanced security solutions that align with our innovative security strategy. 

To succeed in this role you should, 

• Be able to work independently or as part of a team with minimum supervision. You should have technical certifications or other information security certifications, such as CISSP, CISM, and ITIL, as well as cloud-related certifications in AWS, GCP, Azure, and other cloud platforms. 

• Demonstrate knowledge of cyber security principles, technologies, and best practices, with hands on experience in web security, infrastructure and platform security, identity and access management, incident response and threat management, and security protocols, including those associated with open-source software. 

• Have proven experience with a focus on SOC, SIEM, SOAR, Data Lake, and data pipeline management, with strong knowledge of SOC operations, incident response methodologies, and security incident management. Proficiency in implementing and managing threat hunting platforms and development and customization of playbooks and automation scripts would be a big plus. 

• Possess a good track record of implementing security solutions, including technical design and implementation for on-premises workload for applications and infrastructure, as well as cloud computing workload on Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) models. 

• Have a good understanding of event-driven architecture topics, including integration of traditional applications and data resources, and analytics or machine learning to derive insights. Additional working knowledge of solutions like Cribl, Confluent, Kafka, Fluentd, Grafana, Snowflake would be a big plus. 

• Have practical experience in scripting or coding skills with languages like VBScript, PowerShell, Perl, JavaScript, etc., and a good understanding of REST APIs and JSON will be highly valuable to us. 

Dyson is an equal opportunity employer. We know that great minds don’t think alike, and it takes all kinds of minds to make our technology so unique. We welcome applications from all backgrounds and employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other any other dimension of diversity.