استخدام SOC Team Lead
شرح موقعیت شغلی
Job Description:
The Security Operations Centre (SOC) is part of the Security Operations function. The SOC is looking for an experienced security professional to lead the daily SOC activities in Snapp! Express.
As the Lead SOC Analyst for the Snapp! Express SOC team, you will be responsible for coordinating the efforts of the analysts to ensure effective monitoring takes place; offering technical guidance during an investigation; reviewing and improving playbooks and processes; contributing to the strategy for the SOC; and management of the team. You will have at least 2 years of management experience and be able to evidence good coaching and leadership practices. You’ll also work with other Security Lead(s) within the Security department to maintain a coherent monitoring and detection capability daily.
The security analyst team is a vital part of the SOC. It works closely with other security operations functions, such as Incident Response, Threat Intelligence, and various technology and business units.
Responsibilities:
The Security Operations Centre (SOC) is part of the Security Operations function. The SOC is looking for an experienced security professional to lead the daily SOC activities in Snapp! Express.
As the Lead SOC Analyst for the Snapp! Express SOC team, you will be responsible for coordinating the efforts of the analysts to ensure effective monitoring takes place; offering technical guidance during an investigation; reviewing and improving playbooks and processes; contributing to the strategy for the SOC; and management of the team. You will have at least 2 years of management experience and be able to evidence good coaching and leadership practices. You’ll also work with other Security Lead(s) within the Security department to maintain a coherent monitoring and detection capability daily.
The security analyst team is a vital part of the SOC. It works closely with other security operations functions, such as Incident Response, Threat Intelligence, and various technology and business units.
Responsibilities:
- Lead a team of SOC analysts to deliver against SOC monitoring and response strategy.
- Manage SOC response to escalated cyber security alerts.
- Investigate security cases and work with the other teams to contain and remediate cyber security incidents.
- Ensure all security events are investigated and documented to completion.
- Help develop new detection rules for deployment to the security tooling to increase detection coverage and effectiveness.
- Analyse and suggest improvements on rules and playbooks on SIEM/SOAR and EDR platforms.
- Stay up to date on the changing threat landscape.
- Support and mentor junior members of the team.
Key Interactions:
- Engage with the overall SOC team.
- Engage with the Network Security team when needed.
- Engage with various stakeholders within Security Operations as and when needed.
Competencies and skills:
- BSc or MSc in Computer science or relevant fields.
- At least three years experience in SOC.
- Hands-on Experience in one of the top-ranked SIEM solutions.
- Understanding concepts/frameworks such as Cyber Kill Chain, MITRE ATT&CK.
- Analyzing security logs/alerts such as those from Firewall, EDR, and AV.
- Understanding of enterprise-grade technical security controls and in-depth defense practices.
- Report writing and presentation creation skills relevant to a SOC environment.
- Excellent knowledge of Operating Systems such as Windows, Linux, and MacOS.
- Excellent knowledge of Networks.
مهارتهای مورد نیاز
- امنیت
- soc
- Firewall
حداقل سابقه کار
- سه تا شش سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- مهم نیست