Security Operations Center ( SOC ) Manager
Apply on
Key Responsibilities:
SOC Leadership and Management:
o Manage the SOC team, including scheduling, training, mentoring, and performance evaluation.
o Define and implement SOC processes, procedures, and playbooks to ensure efficient security operations and incident response.
o Maintain a shift schedule to provide 24/7/365 coverage, ensuring optimal staffing levels for the SOC.
Security Monitoring and Incident Response:
o Oversee the monitoring and analysis of security events and alerts from various sources, such as SIEM, IDS/IPS, endpoint protection, and cloud platforms.
o Coordinate with internal and external stakeholders to contain and remediate incidents effectively.
o Conduct post-incident analysis to identify root causes and drive improvements in incident response processes.
SOC Strategy and Development:
o Develop and implement SOC performance metrics and reporting mechanisms.
o Continuously evaluate the effectiveness of SOC operations and recommend improvements in technology, processes, and staffing.
o Stay current with emerging security threats, attack techniques, and industry best practices to ensure the SOC remains effective.
Team Collaboration and Communication: Communicate SOC activities and incident response progress to senior management and stakeholders.
o Collaborate with other cybersecurity teams, such as CSIRT, Threat Hunt, Threat Intelligence, and Vulnerability Management, to enhance overall security posture.
Qualifications:
Minimum of 5-7 years of experience in cybersecurity, with at least 2-3 years in a SOC environment and 1-2 years in a leadership role.
Strong knowledge of SOC operations, security monitoring, incident response, and SIEM technologies.
Experience with security technologies and tools, such as EDR, IDS/IPS, firewalls, and cloud security solutions.
Industry-recognized certifications, such as CISSP, CISM, GIAC, or CEH, are preferred.