Key skills
Security tools managementData ScienceMachine LearningSIEM technologiesSOAR technologiesEDR technologiesIncident responseCollaborationLeadershipCommunicationAIMLAnalyticsSDLCCI/CD
About this role
North is an end-to-end payment solutions company committed to helping entrepreneurs grow their businesses. They are seeking a Director of Adversary Engineering to define and execute strategies for Log Management and AI-driven automation while leading the development of automated workflows and ensuring collaboration with cross-functional teams.
Responsibilities:
- Define and execute enterprise strategies for Log Management, SIEM, and AI-driven automation, ensuring architectures support scalable data ingestion, real-time threat detection, and alignment with business objectives
- Lead the end-to-end lifecycle (from design to deployment) of automated workflows, SOAR playbooks, and response scripts to streamline incident handling and maximize operational efficiency
- Oversee the testing, validation, and continuous tuning of security controls, utilizing AI/ML and advanced analytics to reduce false positives, enhance detection accuracy, and optimize system performance
- Drive cross-functional collaboration with DevOps and IT teams to embed security automation best practices into CI/CD pipelines, cloud environments, and enterprise infrastructure
- Establish and track Key Performance Indicators (KPIs) and operational metrics to quantify program efficacy, demonstrate ROI, and drive data-informed continuous improvement
Requirements:
- Bachelor's degree in Software Engineering, Computer Science, Information Technology, or a related field, or equivalent practical experience (6+ years of experience in DevOps)
- Experience acting as a Product Owner, Lead Engineer or Principal Architect for security tools, managing the full lifecycle of internal security software or scripts (SDLC)
- Practical experience applying Data Science, Machine Learning models or AI to cybersecurity problems
- Experience integrating security tools with enterprise systems and CI/CD pipelines
- Understanding of security operations and incident response processes
- Strong technical background in security tooling, SIEM, SOAR, EDR technologies, and detection engineering principles