- BS/BA degree or equivalent combination of related work experience desired. Post-Graduation (Preferred)
- Prior SOC Management experience highly desired.
- Prior Security Engineering Experience desired.
- Prior security analysis experience is desired.
- CISSP Certification required
- PMP Certification highly desired
- Desirable certifications include, Security+, CEH, GCIA, GCIH or similar
- Strong risk assessment capabilities, technology and platforms across a broad range of industries
- Strong experience in IT Infrastructure, Data Center, Project management, problem solving and operationalization of resources
- Strong knowledge and understanding of enterprise IT Systems, applications and databases, cloud infrastructure and security principles, solutions and technologies (like SIEM, DLP, IDAM, Malware protection, WAF, Proxy)
- Ability to adapt to changes in the original project plans; effectively communicates changes or delays to team members and key stakeholders
- Strong managerial skills with ability to impact individual project direction through influence and collaboration.
- Highly proactive and results-oriented with proven track record of success in all phases of project development.
- Ability to establish and communicate work load prioritization within and between project teams.
- Ability to handle multiple projects and tasks simultaneously.
- Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement.
- Excellent Documentation (Excel, PowerPoint, Word), Communication, Presentation, interpersonal and managerial skills
Security Operations Center (SOC)
- The Security Operations Center Lead role requires a subject matter expert in the Area of Security Operations, Security technology Stack, security product life cycle management. Effective communication with key Sr. stakeholders, business function leadership and technology leaders is a key to the success of this role.
- Plan, direct and control the functions and operations of the 24/7 Security Operations Center (SOC). Monitor and analyze security incidents to protect Company and its information assets from unauthorized access, misuse, modification or destruction
- Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery and chain of evidence/ forensic artifacts required for additional investigations.
- Evaluate RFIs/ RFPs/BRDs, vendor proposals, cost estimates for key technology platforms being introduced or revamped in the organization from information security perspective.
- Liaise with multiple vendors/solution providers for product evaluation throughout the lifecycle of the Security Operations related project.
- Develop business cases for security investments and set priorities based on risk assessment.
- Ensure adherence to regulatory compliance, banking laws governing information security, customer identification program, personal identifiable information and assets
- Monitor all intelligence sources to identify potential threats/compromises and develop proactive strategies to minimize the impact of these threats
- Manage the collection, documentation and research of security incidents
- Conduct scheduled and ad hoc training exercises to ensure staff are current with the latest threats and incident response techniques
- Oversee and develop strategies to identify, detect, and prevent fraudulent activity
- Establish performance goals and priorities. Prepare, conduct and review performance appraisals. Develop, mentor and counsel staff
- Provide input and/or prepare budget requirements for Annual Financial Plan
- Lead SOC Integrations with new infra, network, and applications
- Ensures integration of security requirements in project design, timely and high quality delivery of projects
- Develop operational run/play books
- Liaison with IT teams and other biz functions to ensure security incidents are contained as per the SLA
Vendor Management
- Lead and manage outsourced SOC operations
- Manage outsourced SOC services for quality of implementation of Scope of work and performance/ fulfillment of Service Level Agreements (SLA)
- Monitor key performance indicators, determine gaps in performance metrics, and recommend/execute change management techniques for efficiency/quality improvements
- Oversee the monitoring, identification and resolution of security incidents to detect threats through analysis, investigations and prioritization of incidents based on risk/exposure
- Manage multiple vendors involved in the area of security operations
Didn’t find the job appropriate? Report this Job