Enable job alerts via email!
Incident Response-SOC Lead
Dautom
Dubai
On-site
AED 120,000 - 200,000
Full time
Job summary
Join a forward-thinking company as a Security Operations Specialist, where you will be at the forefront of incident response and security management. In this pivotal role, you will oversee critical processes for detecting and responding to security incidents, ensuring the integrity and safety of client operations. You will collaborate closely with IT teams to develop effective security operation playbooks and enhance logging and monitoring strategies. This is an exciting opportunity to make a significant impact in a dynamic environment, working with a global leader committed to quality and innovation in security practices.
Qualifications
- Experience in managing security incidents and events effectively.
- Strong knowledge of logging and monitoring across infrastructure.
Responsibilities
- Owns the incident response process for security events.
- Drives the strategy for Security Incident and Event Management (SIEM).
- Creates and maintains security operation playbooks.
Skills
Job description
In this role, you will have the opportunity to work closely with one of our esteemed clients. This client is a global leader known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects.
Job Description:
- Incident Response Process: Owns the critical process steps detection, validation, containment, and communication for security events and incidents such as malware infections, potential compromise, Distributed Denial of Service (DDoS), etc.
- Security Incident and Event Management (SIEM): Drives our strategy for SIEM and oversees the effectiveness of the technology and process. Involves appropriate tuning, correlation of critical logs, connection to our incident response process, and reporting of relevant metrics.
- Security Operations Playbooks: Create, maintain, and promote a set of security operation playbooks with Agilents IT teams to effectively trigger and execute the security incident response process.
- Logging and Monitoring Across Infrastructure & Applications: Manages the current state of logging and monitoring, maintains a vision of ideal state of logging and monitoring, and drives a prioritized roadmap to reduce the gaps.
- Internal / External Engagements: Act as a SPOC for all escalated client communications and handle the day-to-day operations of the Security Operations Centre reporting to the SOC Manager.
Logging, Event Management, Steps Validation, Metrics, Infrastructure Strategy, Security Communication Management
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
