Job Purpose:
This role will provide operational oversight of cybersecurity services, mentoring, training and provide technical leadership to security operations center. The Security Operations Lead will assess information network threats such as computer viruses, exploits, and malicious attacks; operate vulnerability assessment equipment in support of intrusion analyses; determines true threats, false positives and network system misconfigurations and provide solutions to issues detected in a timely manner. Support monitoring for potential compromise, intrusion, deficiency, significant event or threat to the security posture and security baseline. Develop and ensure Operators/Analyst are following intrusion and escalation processes and procedures.
Core Responsibilities:
• Possesses operational decision-making authority (with management collaboration)
• Demonstrates technical and operations program leadership.
• Participates in technical, business process, and status review meetings
• Supervises SOC staff supporting the SOC infrastructure
• Manages SOC activities, deliverables, presentations, and briefings
• Maintains SOC service levels and specifications
• Develops, implements, monitors, documents, and controls all SOC processes
• Utilizes formal change control process to ensure agreement on all objectives and tasks
• Formulates and administers SOC policies and procedures to define and enhance quality
• Identifies SOC improvement areas through analysis of issues, internal audits, and customer complaint
• Plans and implements new or changed SOC services
• Supervises and manages operation of the:
• Network monitoring/intrusion detection sensor network
• SIM infrastructure
• SOC IT infrastructure
• Assesses, implements, and manages numerous data sources for the Security Information Management (SIM) system
• Develops and executes a test and development computing environment
• Provides support for both onsite and offsite IT engineering and operations on a 24x7x365 basis under prescribed service levels for various enterprise-grade security technologies
Qualifications:
Educational:
• Bachelors of Science in Computer Science, Computer Systems Engineering or Computer Information Systems or Engineering, Science or a related field
Years Of Experience:
• 5 + years relevant experience
Nature of Experience:
• Experience in systems cyber security analysis
• Experience working at a Security Operations Center (SOC)/Network Operations Center (NOC)
• Experience with Computer Emergency/Incident Response Team (CERT/CIRT)
[ Apply at: [javascript protected email address] ]