About Company:
Casepoint provides full eDiscovery capabilities through a powerful, secure, cloud-based platform. We are repeatedly chosen by leading law firms and multinational corporations for their largest matters. On an upward trajectory for almost a decade, Casepoint is looking to expand its team globally. Team cooperation, “work hard, play hard” attitude, open communication, and kindness mark Casepoint’s culture.
Number of positions currently vacant: 01
Position Summary:
We are seeking an experienced Security Lead with demonstrated expertise across both Blue Team (defensive operations, detection, and response) and Red Team (offensive security, penetration testing, and adversary simulation) domains. This leadership role will design, implement, and manage comprehensive security strategies to enhance our organization's cyber resilience, proactively identify vulnerabilities, and ensure regulatory compliance.
Key job responsibilities:
- Leadership & Strategic Planning
- Develop and execute security strategies aligning with business goals.
- Lead a multidisciplinary team of security analysts and engineers across Blue Team and Red Team functions.
- Establish metrics-driven frameworks to assess, mature, and report security posture to executive leadership and stakeholders.
- Blue Team – Defensive Operations
- Oversee Security Operations Center (SOC) activities, including SIEM/SOAR tuning, advanced threat detection, and incident response playbook development.
- Perform continuous monitoring, threat hunting, and vulnerability management to proactively mitigate risks.
- Lead forensic investigations, root cause analysis, and recovery processes post-incident to strengthen organizational defenses.
- Red Team – Offensive Operations
- Plan and execute adversary emulation exercises, penetration tests, and social engineering campaigns to evaluate real-world security gaps.
- Develop and maintain custom tools and scripts to simulate evolving threat actor TTPs (MITRE ATT&CK framework).
- Provide actionable remediation recommendations and collaborate with Blue Team to enhance detection and response capabilities based on Red Team findings.
- Innovation & Continuous Improvement
- Drive adoption of advanced security solutions including AI/ML-based threat detection, EDR/XDR optimization, and blockchain for data integrity where applicable.
- Evaluate and implement emerging security technologies to maintain a proactive security posture against APTs and evolving attack vectors.
Required skills & experience
- Education: Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, or related field.
- Certifications (preferred but not mandatory)
- Offensive Security: OSCP, OSCE, OSEP, CRTO, or equivalent
- Defensive Security: GCIA, GCED, GCIH, or equivalent
- Leadership & Strategy: CISSP, CISM, CCSP
- Experience
- Minimum 4 years of progressive experience in cybersecurity with at least 1 year in a leadership or technical lead role.
- Proven track record in managing Blue Team operations (SOC, SIEM, IR) and conducting Red Team assessments (external/internal pentests, phishing campaigns, adversary emulation).
- Deep understanding of threat intelligence, MITRE ATT&CK, cyber kill chain, and Purple Team methodologies.
- Desired Skills
- Expert in EDR, SIEM (Splunk, Elastic, Graylog), SOAR, and vulnerability management tools.
- Strong scripting skills (Python, PowerShell, Bash) for automation and tool development.
- Familiarity with container and cloud security (Kubernetes, Docker, AWS/Azure security services).
- Excellent communication and stakeholder management abilities, including executive reporting.
Compensation & culture:
Excellent culture produces an excellent product. We value our team members, so we provide a nurturing environment of camaraderie. We recognize talent with competitive compensation and career empowerment.
Location: Surat, India