Overview:
We’re seeking a skilled and experienced Principal IT Security Engineer to join our dynamic team and ensure the highest level of security for our infrastructure and data. The Cybersecurity Principal Engineer helps protecting against cybersecurity incidents and creates cyber security ecosphere, with a focus on the IT & OT environment, and working with IT realm and Celanese businesses as needed.
Responsibilities:

As a Principal IT Security Engineer for Cybersecurity Operations, you will oversee and coordinate Global Security Engineering activities, focusing on the responsibilities outlined below, but not limited to, to maintain the Cyber Security of our IT and OT systems:

• Act as a primary point of contact for Security Engineering related technical assistance, offering mentorship and expertise to Security Operation Team members and IT teams as well as ICS/OT/PCN resources on security engineering solutions and standards and best practices. Provide technical mentorship to Security Operation Center Security Engineering team members to elevate overall expertise.
• Take ownership of engineering projects, driving them from inception to successful delivery, and ensuring smooth daily business as usual (BAU) operations. Engage with vendors and partners as needed.
• Guide the global Security Engineering team in developing and maintaining monitoring and response toolsets, focusing on SIEM/SOAR optimization to enhance threat detection and response across IT and ICS/OT/PCN systems.
• Drive and lead Cyber SecOPS toolset enhancement: Collaborating closely with IT as well as site ICS/OT/PCN resources, Industrial Security, and other stakeholders to ensure swift, effective detection and response.
• Lead and drive content development & rule creation: supervising the creation and ongoing improvement of alert content, detection logic, and event rules to identify and mitigate threats promptly.
• Lead efforts to refine and implement security processes, workflows, and procedures and drive proactive assessments and improvements to address security gaps and risks.
• Providing off-hour cyber security support as needed.

Qualifications:

• Act as a primary point of contact for Security Engineering related technical assistance, offering mentorship and expertise to Security Operation Team members and IT teams as well as ICS/OT/PCN resources on security engineering solutions and standards and best practices. Provide technical mentorship to Security Operation Center Security Engineering team members to elevate overall expertise.
• Take ownership of engineering projects, driving them from inception to successful delivery, and ensuring smooth daily business as usual (BAU) operations. Engage with vendors and partners as needed.
• Guide the global Security Engineering team in developing and maintaining monitoring and response toolsets, focusing on SIEM/SOAR optimization to enhance threat detection and response across IT and ICS/OT/PCN systems.
• Drive and lead Cyber SecOPS toolset enhancement: Collaborating closely with IT as well as site ICS/OT/PCN resources, Industrial Security, and other stakeholders to ensure swift, effective detection and response.
• Lead and drive content development & rule creation: supervising the creation and ongoing improvement of alert content, detection logic, and event rules to identify and mitigate threats promptly.
• Lead efforts to refine and implement security processes, workflows, and procedures and drive proactive assessments and improvements to address security gaps and risks.
• Providing off-hour cyber security support as needed