Team:
Close date:
Working pattern:
Contract Type:
Location:
Department:
Description & Requirements:
SOC Security Manager will lead a team covering a 24/7 shift rota, you will interface with key stakeholders for different business units and manage expectations at all levels within the business
Day to Day Responsibilities:
- Creating and expanding the security operations function
- Mentor Level 2 & 3 SOC Engineers
- Contribution to common security architecture.
- Running all operational activities including a MSSP SOC provider.
- Oversight of security monitoring, incident response and threat analysis.
- Conduct threat modelling exercises focusing on cloud services (AWS)
- General contributions towards improvement of institutional security posture.
- Act as a point of escalation in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques.
- Create and maintain SOC Run books for Both AWS Cloud hosting and corporate systems
- Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks in support of technologies managed by the Security Operations Centre.
- Prepare Monthly Executive Summary Reports for managed clients and continuously improve their content and presentation.
- Provide recommendations in tuning and optimisation of security systems, SOC security process, procedures, and policies.
- Maintain vulnerability scanning tools using Nexpose/insight VM
Other duties may involve the following:
- Participation in the evaluation, selection and implementation of security products and technologies as part of defined project or programme activities
- Assurance & verification that all suppliers are operating in accordance with their agreed contractual obligations.
- vulnerability management and assessments.
What You Will Bring To The Table:
- Preferred Information Security professional designations such as CISSP, CISM, CISA.
- 7 years previous Security Operations Centre management Experience
- Experience managing a SOC Team responding to incidents and events in AWS cloud hosting is essential
- Demonstrated skills in digital investigations including computer forensics, network forensics, malware analysis and memory analysis.
- Excellent knowledge of EDR preferably Carbon Black
- Ability to analyse data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents.
- Detail oriented with strong organisational and analytical skills.
- Strong written communication skills and presentation skills
- Self-starter, work independently and adjust to changing priorities, critical and strategic thinker, negotiator, and consensus builder.
- Strong knowledge of IT including multiple operating systems and system administration skills (Windows, Solaris, Unix)
- Good knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products.
- Strong understanding of security incident management, malware management and vulnerability management processes.
- Security monitoring experience using SIEM, Splunk intrusion detection and prevention technologies.
- Experience with web content filtering technology - policy engineering and troubleshooting.
- Our people are at the heart of our business. We work hard to provide a rich employee experience and a robust framework for ongoing career development.
- Competitive salary and employee benefits scheme.
- Flexible working hours, we value work-life balance.
- Parental (including secondary) leave policy.
- Cab facility available in Delhi/NCR.
- Meal facility available