Principal Cyber Security Specialist – Blue Team

About the role

The Principal Cyber Security Specialist (Blue Team) will lead strategic investigative activities, ensuring robust incident response, high‑quality threat detection, and thorough forensic investigations across the organisation.

Key responsibilities

• Develop and manage a sandbox‑based forensic investigation environment and advanced analysis tooling for secure malware detonation and threat analysis.
• Preserve evidence and conduct detailed incident investigations, covering digital, computer, network, and memory forensics.
• Document forensic investigation procedures and incident response playbooks, and deliver structured training to improve team capability and operational maturity.
• Mentor and guide analysts, driving continuous improvement initiatives and providing actionable insights to business stakeholders.

Required profile

• Proven ability to lead Blue Team investigations and coordinate incident response activities.
• Strong analytical mindset with experience in developing forensic tools and processes.
• Excellent communication skills for delivering training and reporting findings.

Required skills

• Digital forensics
• Computer forensics
• Network forensics
• Memory forensics
• Malware detonation
• Threat analysis
• Evidence preservation
• Sandbox environment development
• Incident response procedures