Bravura Solutions Limited

SOC Security Manager will lead a team covering a 24/7 shift rota, you will interface with key stakeholders for different business units and manage expectations at all levels within the business

Day to Day Responsibilities:

• Creating and expanding the security operations function
• Mentor Level 2 & 3 SOC Engineers
• Contribution to common security architecture.
• Running all operational activities including a MSSP SOC provider.
• Oversight of security monitoring, incident response and threat analysis.
• Conduct threat modelling exercises focusing on cloud services (AWS)
• General contributions towards improvement of institutional security posture.
• Act as a point of escalation in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques.
• Create and maintain SOC Run books for Both AWS Cloud hosting and corporate systems
• Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks in support of technologies managed by the Security Operations Centre.
• Prepare Monthly Executive Summary Reports for managed clients and continuously improve their content and presentation.
• Provide recommendations in tuning and optimisation of security systems, SOC security process, procedures, and policies.
• Maintain vulnerability scanning tools using Nexpose/insight VM

Other duties may involve the following:

• Participation in the evaluation, selection and implementation of security products and technologies as part of defined project or programme activities
• Assurance & verification that all suppliers are operating in accordance with their agreed contractual obligations.
• vulnerability management and assessments.

What You Will Bring To The Table:

• Preferred Information Security professional designations such as CISSP, CISM, CISA.
• 7 years previous Security Operations Centre management Experience
• Experience managing a SOC Team responding to incidents and events in AWS cloud  hosting is essential
• Demonstrated skills in digital investigations including computer forensics, network forensics, malware analysis and memory analysis.
• Excellent knowledge of EDR preferably Carbon Black
• Ability to analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents.
• Detail oriented with strong organisational and analytical skills.
• Strong written communication skills and presentation skills
• Self-starter, work independently and adjust to changing priorities, critical and strategic thinker, negotiator, and consensus builder.
• Strong knowledge of IT including multiple operating systems and system administration skills (Windows, Solaris, Unix)
• Good knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products.
• Strong understanding of security incident management, malware management and vulnerability management processes.
• Security monitoring experience using SIEM, Splunk intrusion detection and prevention technologies.
• Experience with web content filtering technology - policy engineering and troubleshooting.