SOC Manager – Security Vendor

Role overview:

Working for a security vendor, you’ll be responsible for supporting the Head of SecOps in overseeing the company’s Security Operations activity, improving and challenging existing processes and procedures in a very agile and fast moving information security environment.

Main tasks and responsibilities:

• Operate within a global team that takes responsibility for the security monitoring of key technologies and tools across the estate
• Lead and manage a team of Security Analysts & the Vulnerability management team
• Comfortable operating in a technical capacity performing hands-on incident response and supporting/managing SOC analysts
• Act as a SME in matters related threat and vulnerability management incl incident response
• Understand security incidents and the likely impact these will have on the business
• Define and report on KPIs with recommendations for improvement
• Identify security risks, threats and vulnerabilities of the company’s network, systems, applications and new technology initiatives
• Implement and maintain operating run books, operating processes and procedures
• Help to develop and configure use cases, and alerting rules within SIEM technologies
• Mange the vulnerability management programme that includes vulnerability scanning, security testing, threat monitoring and data loss and leakage prevention
• Direct on-going threat intelligence activities
• Mentor and develop security analysts

Skills:

• Prior experience working/managing a SOC
• Demonstrable experience and operational knowledge of SIEM, firewalls, intrusion detection and vulnerability management systems/solutions
• Detailed understanding of Security Monitoring, Threat Intelligence, Vulnerability management and Incident Response
• Experience managing security incidents within a complex environment.
• Strong foundation in network security and common attack methodologies
• Exposure to user behaviour analytical tools is preferable
• Good understanding of common protocols such as HTTP, SMTP, SSL/TLS, SSH, DNS
• Must demonstrate strong analytical and problem-solving skills to enable effective security incident and problem resolution
• Knowledge of latest threat trends and security landscape

Pre-requisites:

• Excellent analytical skills with the ability to see the bigger picture
• Excellent communication skills with the ability to influence multiple stakeholders
• Willingness to learn and adapt to new technologies coupled with a passion for cyber security
• Ability to self-motivate and define priorities to meet deadlines
• Good team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles

Further info:

• Competitive salary & flex bens
• Flexible locations / remote

To apply:

Please either register your CV and complete the information fields requested or send your CV to vacancies@trilatycyber.com referencing WDA154 and your current salary