Principal Cybersecurity Engineer
Description:
Role Summary
This leadership position will coordinate large-scale cybersecurity initiatives, ensure program alignment across Cyber Risk, Cyber Operations, and Preparedness domains, and provide executive-level reporting. It requires a deep technical foundation (e.g., cybersecurity engineering) and the ability to integrate multiple work streams—from data protection and threat intelligence to compliance and advanced analytics—into a unified security strategy.
Why This Role?
The Principal Cybersecurity Engineer at Sealed Air has the opportunity to shape a robust security posture across the enterprise—architecting advanced data protection measures, orchestrating complex cybersecurity initiatives, and guiding executive-level decision-making. By blending strategic leadership with deep technical expertise, you will ensure the security of critical assets, align programs with recognized frameworks, and propel Sealed Air’s global security capabilities forward.
The Principal Cybersecurity Engineer will:
•Oversee Major Cyber Projects
o Lead high-impact, multi-year cybersecurity initiatives (e.g., data loss prevention, advanced threat detection) to protect sensitive information and meet strict regulatory/audit expectations.
o Manage cross-functional project teams, ensure deliverables meet non-negotiable deadlines and align with Sealed Air’s strategic objectives.
•Drive Program Alignment
o Develop and maintain integrated program roadmaps, creating synergy among stakeholder groups (risk, compliance, privacy, governance, etc.).
o Coordinate large-scale funding requests to ensure resources are allocated to the most critical security programs and initiatives.
• Provide Organizational Reporting
o Establish comprehensive reporting frameworks that consolidate cybersecurity metrics, executive dashboards, and board-level presentations.
o Present complex security topics, ranging from emerging threats to multi-year initiatives, in concise, business-friendly formats that are accessible to non-technical audiences.
• Facilitate Risk and Vulnerability Management
o Oversee enterprise-wide risk assessment processes for critical systems, recommending mitigation strategies aligned with recognized security frameworks (e.g., NIST CSF, ISO 27001).
o Integrate data scanning, classification, and tagging efforts within a broader data protection strategy, collaborating closely with engineering teams on DLP controls.
• Enhance Incident Response Preparedness
o Partner with the Security Operations Center (SOC) to refine incident response procedures, ensuring swift, consistent actions in the face of evolving threats.
o Promote SOC optimization, including possible adoption of automation and orchestration tools to streamline detection and response workflows.
• Engage in Strategic Planning
o Support the development of multi-year cybersecurity roadmaps, ensuring alignment with enterprise data management and governance standards.
o Contribute to broader architectural reviews, introducing advanced analytics or big data solutions (where appropriate) to strengthen threat intelligence and response capabilities.
• Coordinate Stakeholder Collaboration
o Serve as a key liaison among internal IT teams, external vendors, and various governance and control officers to bolster data protection, threat intelligence, and compliance initiatives.
o Manage external partnerships for advanced threat intelligence and security product evaluations, influencing vendor performance and contract negotiations.
• Stay Ahead of Emerging Threats
o Track emerging technologies (e.g., AI/ML, cloud computing, quantum computing, zero trust models), providing proactive guidance on potential risks and recommended controls.
o Lead efforts to integrate threat intelligence feeds and other relevant data into centralized, high-visibility dashboards or control frameworks.
• Deliver Executive-Level Insights
o Provide frequent, high-quality executive summaries to senior leadership, highlighting progress on core programs, newly identified threats, and strategic recommendations.
o Champion continuous improvement by analyzing lessons learned, incorporating feedback, and refining practices to reduce future risk.
Expertise Needed:
• Program & Project Management
o Demonstrated success leading complex, multi-disciplinary security initiatives under strict timelines and compliance/audit constraints.
o Experience aligning budgets with business objectives, including board-level reporting.
• Risk Management & Compliance
o Proficiency in conducting risk assessments, implementing actionable risk controls, and guiding policy development.
o Familiarity with frameworks (NIST CSF, ISO 27001) to ensure alignment of security measures with industry standards.
• Advanced Threat Detection & DLP
o Hands-on experience with threat hunting, SIEM tools, data loss prevention (DLP), and cloud access security brokers (CASBs).
o Proven ability to develop comprehensive data protection strategies, including data classification and scanning capabilities.
• Incident Response & Orchestration
o Experience in forensic analysis, root cause investigation, incident management, and implementing playbooks for automated or semi-automated response.
o Demonstrated knowledge of security orchestration and automation technologies.
• Security Architecture & Big Data
o Background in designing or reviewing security architectures for large enterprises, possibly including big data analytics platforms (Hadoop, Spark, Solr, Elasticsearch).
o Capability to evaluate emerging security technologies and integrate them into enterprise ecosystems.
• Policy Development & Control Frameworks
o Proven aptitude for creating and refining security policies, operational standards, and frameworks that unify teams, tools, and processes.
o Familiarity with methodologies (e.g., STRIDE, VERIS, STIX/TAXII) for threat modeling, logging, and event sharing.
• Cross-Functional & Vendor Collaboration
o Skilled in building relationships with internal stakeholders (risk, privacy, compliance) and external vendors/partners.
o Track record of negotiating contracts, establishing service-level agreements (SLAs), and guiding third-party security assessments.
• Executive Reporting & Communication
o Strong ability to communicate technical content to senior management and governance boards, including risk committees or audit functions.
o Experience creating high-visibility executive materials (board reports, dashboards, strategic memos).
Required Qualifications:
• Bachelor’s degree (BA/BS) in a relevant field (e.g., Information Science, Computer Science, Cybersecurity).
• Robust cybersecurity engineering background to bridge strategic vision with hands-on technical execution.
• Strong verbal and written communication skills; ability to synthesize complex data into executive-level insights.
• Demonstrated analytical and problem-solving abilities in a cybersecurity context.
• Business and financial acumen, particularly in managing budgets and justifying large-scale cyber initiatives.
• Proven experience coordinating global or cross-functional teams, including remote team members in multiple time zones.
• Commitment to continuous improvement, with a passion for staying current on cybersecurity threats, trends, and standards.