About us At TCC Global, we create innovative loyalty marketing solutions that drive customer engagement and enhance brand loyalty for some of the world's leading retailers.
TCC || Building customer loyalty The Cybersecurity Engineering Lead will ensure the secure configuration and operation of our IT and cloud environments.
This role spans across on-premise infrastructure, Windows/Linux endpoints, and cloud platforms (IaaS, PaaS, SaaS) such as Salesforce, Azure, and Microsoft 365, including identity services and end-user devices.
As the primary point of contact for security-related matters, the person will manage our external SOC, oversee patch and vulnerability management, coordinate penetration tests, and lead the operation of the Microsoft Defender XDR suite including Sentinel.
It will also play a key role in incident handling and serve as deputy to the Security Manager in their absence.
You will be responsible for balancing day to day activities and projects, including the following:
* Oversee the secure configuration and operation of on-premises systems, endpoints, and cloud environments, including platforms such as Microsoft Azure, Microsoft 365 and Salesforce.
* Support the Security Management team in the development, validation, and ongoing improvement of security playbooks, ensuring processes remain up to date with evolving threats.
* Take an active role in incident response efforts, leading the detection, investigation, and remediation of security incidents.
Manage externally conducted penetration testing activities, including planning, oversight, and tracking remediation of findings to closure.
* Provide security expertise and guidance to IT and business teams, and act as a deputy for the Security Manager when required.
* External SOC and security solution providers, auditors Internal: IT Security Management, IT Engineering and Applications Knowledge, Skills & Experience
* With previous experience as an IT Operations lead or Engineer (ideally 5 years of relevant experience), together with:
* Extensive experience in cybersecurity operations, preferably in a senior or lead position, demonstrating hands-on technical proficiency and leadership.
* Deep understanding of endpoint security for both Windows and Linux environments, coupled with expertise in securing cloud platforms such as Azure, M365, and Salesforce, as well as traditional on-premise infrastructure and networks.
* Comprehensive knowledge of incident response processes and the development of practical, effective playbooks.
* Strong background in coordinating with external SOC teams and overseeing penetration testing engagements, from planning through to closure of findings.
* A Flexible and collaborative mindset and the ability to foster productive relationships across IT, business, and leadership teams, supporting a proactive and security-aware culture.
* Experience working with compliance and security frameworks (e.g.,