SOC Team Lead

Job Purpose

As a SOC (Security Operations Center) Team Lead, you will manage people, process and technologies that cater to multiple customers. You will work with both large and small organizations across multiple countries and levels of technical maturity.

Main Duties :

  • Manage shift in a SOC environment.
  • Lead daily operations in a shift and assist/lead analysts in their work.
  • Administer where needed on various SOC tools and technologies.
  • Work with various OEM’s/vendors/service providers on managing and handling tools and technologies in a SOC environment.
  • Interact and lead conversation with multiple customers in a global SOC environment.
  • Lead Investigation, handle escalation and manage customers through difficult and stressful situations, that may involve nontraditional working hours.
  • Good understanding across multiple platforms including Windows, Mac, Linux/Unix estates.
  • Lead administration and management of SOC tools such as anti-malware, EDR solution, content filtering, etc.
  • Lead or author incident management processes and procedures, SOC manuals, etc.
  • Produce high-quality written and verbal communications, recommendations, and findings to customer stakeholders.
  • Handle cyber security or IT leads or management teams at customer and report on various stages in SOC engagements.
  • Maintain awareness of current cyber security tools and threat landscape in order to advise customers appropriately.

Skills and attributes for success

  • Ability to thrive in fast-paced and challenging situations, mainly in a start-up eco-system.
  • People, Process and Technology management skills.
  • Keeping self-up-to-date on various tools and technologies in Cyber Security space.
  • Highly skilled and knowledgeable in incident management, threat hunting, various SOC processes, out-of-the-box thinking in handling situation.
  • Apply experience and instinct to discover new tools, techniques and procedures used by threat actors.
  • Work collaboratively as part of a team across multiple time zones to share information and to achieve a high standard of work.

Experience and Skills

  • 6+ years of experience in Cyber Security, mainly in SOC environment.
  • Network and Endpoint security experience; IDS, IPS, EDR, Malware defenses and monitoring experience.
  • Understanding of security threats, vulnerabilities and ‘Living off the Land’ techniques.
  • Open to work in shifts and in rare occasions outside of shift hours.
  • Able to thrive within a team environment as well as on an individual basis.

Desirable

  • Threat hunting experience preferred.
  • Experience administering and supporting Windows, Mac and Linux based operating systems.
  • Advanced Information Security certifications preferred, such as CEH, any major End Point Security certifications, any major UTM certifications, etc.
  • Resolution of security incidents by identifying root cause and security posture improvement recommendations.
  • A professional, calm, and expert manner at all times, while also being able to show leadership during stressful situations.

Contact

Pleaseclick here to upload resumeor write to careers@wydur.com with a cover note and your full and updated profile.