JOB DETAILS

JOB DETAIL

- Stay on top high-severity cases (eg, P1 and P2)
- Manage team workload
- Improve SOC operation efficiency
- Supervise and ensure that SOC services are delivered according to the agreement and SLA
- Regularly evaluate the quality of incident report
- Ensure the SOP is consistently developed, reviewed, and updated
- Engaging with key accounts
- Examine agreements and verify that the Scope of Work can be delivered
- Handle personnel issues (Hiring, Upskilling, and Retaining)
- Grow SOC revenues
- Ensure soc spending optimum each month

REQUIRED WORK EXPERIENCE

- Bachelor’s degree in computer science, computer engineering, information technology or related fields..
- Minimum 5 years of Security Operations Center experience.
- Must be willing to work in a setting that incorporates a shift schedule to support 24x7 operations.
- Experience monitoring a SIEM or equivalent, investigating incidents, and utilizing threat intelligence to enhance detections in a computing environment. (Splunk and ArcSight must be prefer)
- Experience investigating phishing and business email compromise
- Exceptional problem solving and critical thinking skills
- Ability to multitask and investigate multiple incidents at the same time
- Strong understanding of the principles of Information Security
- Good command of both spoken and written English.
- Be able to work efficiently under pressure.
- Technical Security Certifications - Security+, Network+, CySA+, CASP+ or other related certifications preferred.

Technical Skill/Experience :
- Network, EDR/Endpoint, Identity, Cloud, IPS knowledge with event analysis and Troubleshooting.
- Device and Security Event Log monitor and analysis.
- Vulnerability Assessment, Attack pattern, Security Tools.
- SIEM or equivalent experience (prefer Splunk and ArcSight)custom queries, reports, creating correlated alerts, and dashboard creation.
- Supervisory principles.
- Risk assessment and management tools and methodology.
- Incident response management