Manager, Security Operations Centre (SOC)
3 weeks ago
Job Summary:
The SOC Manager will oversee the day-to-day operations of the Security Operations Center. This role is responsible for managing and coor..
Job Summary:
The SOC Manager will oversee the day-to-day operations of the Security Operations Center. This role is responsible for managing and coordinating the monitoring, detection, and response to cybersecurity incidents. The SOC Manager will lead a team of cybersecurity analysts and engineers, ensuring that all security incidents are addressed promptly and effectively.
Responsibilities
- Lead and manage the SOC team, including recruitment, training, and performance evaluation of security analysts and engineers.
- Develop and implement SOC policies, procedures, and processes to ensure effective and efficient security operations.
- Monitor the security landscape and ensure that the SOC team is equipped with the latest threat intelligence, tools, and technologies.
- Coordinate and respond to security incidents, ensuring proper incident management and response protocols are followed.
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential security risks.
- Collaborate with other departments to ensure the organization's security posture is maintained and improved.
- Develop and maintain key metrics and reports to measure the effectiveness of the SOC operations.
- Provide advisory to clients for compliance with relevant regulatory requirements and industry standards.
- Stay updated on the latest security threats, trends, and technologies to continuously improve the SOC's capabilities.
Requirements
- Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 5 years of experience in information security, with at least 3 years in a SOC or incident response role.
- Advantageous to have managed and led a team of security professionals.
- In depth understanding of Cyberkill Chain and Mitre Att&ck framework
- In-depth knowledge of security technologies and tools such as SIEM, IDS/IPS, firewalls, and endpoint protection.
- Experience with incident response methodologies and best practices.
- Strong understanding of network protocols, system architecture, and cybersecurity threats.
- Proficiency in scripting and automation tools is a plus.
- In-depth understanding of ITIL Framework
- Strong understanding of cybersecurity frameworks and standards (e.g. ISO 27001, CIS Controls & NIST)
- Advantageous to possess relevant industry certifications such as CISSP, CISM, GIAC, or equivalent.
Official account of Jobstore.