Cybersecurity Lead

Cprime, a Goldman Sachs and Everstone Capital portfolio company, is more than just a full-service consulting firm – we are your strategic partner for driving innovation and agility in your business. Cprime is trusted around the globe to provide strategic and technical consulting, coaching, and training to businesses leading their industry in digital transformation. With over two decades of experience, we have honed our expertise to help organizations adapt at the speed the market demands. In a world where every business is reliant on software, it’s time to embrace change, or be left behind.
We’re more than consultants; we’re passionate problem solvers on a mission to help your organisation thrive in a technology-driven world. We’ve created a dynamic environment with strong innovation where growth is encouraged and diversity is celebrated. We continuously challenge each other to work smarter and adapt new ideas. Our Cprimers are given the flexibility to work, opportunities to collaborate, and have fun along the way.
We are seeking an experienced Cybersecurity Lead to oversee and enhance our organization's security posture. The ideal candidate will be responsible for designing, implementing, and managing security strategies to protect our systems, networks, and data. This role involves leading security initiatives, collaborating with cross-functional teams, and staying ahead of emerging cyber threats.

What you will do:

• Develop and implement comprehensive cybersecurity strategies and policies.
• Lead incident response efforts, including investigation, containment, and remediation.
• Conduct regular security assessments, vulnerability scans, and penetration tests.
• Manage security tools and technologies (firewalls, IDS/IPS, SIEM, EDR, etc.).
• Provide guidance and training to internal teams on security best practices.
• Monitor threat intelligence sources and proactively address potential risks.
• Collaborate with IT, DevOps, and delivery teams to embed security into the development lifecycle.
• Hands-on experience in dynamic malware analysis.
• Collect the suspicious files/scripts and perform malware analysis using sandboxing.
• Incident Investigation and RCA Reporting: Lead incident investigations, analyzing alerts, and conducting evidence collection and triage. Generate Root Cause Analysis (RCA) reports to document, incidents, providing detailed findings and recommendations for remediation.
• Windows Administration: Performed Windows Server administration, including system configurations, user account management, patching, and security hardening, ensuring compliance with security best practices.
• EDR Management: Implementing and managing CrowdStrike Endpoint Detection and Response (EDR), configuring and managing the solution to provide advanced protection for endpoints, detect threats, and respond to security incidents effectively.
• Real-time log monitoring across diverse sources, including firewalls, IDS/IPS, Windows/Linux operating systems, Windows Servers, system applications, databases, web servers, and networking devices, ensuring seamless operations and security.
• Direct prior experience with core security technologies (SIEM, firewalls, IDS/IPS, HIPS, proxies, vulnerability scanners, AV, etc.)
• Determine the scope of a security incident and its potential impact on the Client network recommend steps to handle the security incident with all information and supporting evidence of security events.
• Prepare and present security reports to executive leadership.

Qualifications and Skills:

• 10+ years of experience in cybersecurity, with at least 2 years in a leadership role.
• Strong knowledge of security frameworks and threat modeling.
• Hands-on experience with security technologies and incident management.
• Relevant certifications (e.g., CISSP, CISM, CEH) are a plus.
• Excellent analytical, problem-solving, and communication skills.

Education and Certifications:

• Bachelor’s degree in computer science, Information Security, or related field.
• Should becertified in one out of the three certifications - CISSP, CISM, CEH.

What We Believe InAt Cprime we believe in facilitating social justice action internally, in industry, and within our communities.  We believe part of our mission is to expand the minds, hearts, and opportunities of our Cprime teammates and within the broader community to include those who have been historically marginalized.
Equal Employment Opportunity Statement    Cprime is an equal-opportunity employer that is committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws.