Security Operations Center Specialist

Job Overview: As an Information Security Operations Manager, you will play a crucial role in ensuring the defined technologies are implemented and effective controls are enabled as per the industry standard methodology to detect and prevent threats. The ideal candidate will possess a strong understanding of security principles, incident response methodologies, and threat intelligence. You will be responsible for managing a team of security analysts, overseeing SOC operations, and driving improvements in our security posture. Key Responsibilities: SOC Management & Alert Analysis: Lead and manage the day-to-day operations of the Security Operations Centre (SOC), ensuring timely and effective incident response. Oversee the analysis of security alerts from various sources (SIEM, IDS/IPS, EDR, etc.) to identify and prioritize potential security incidents. Develop and maintain incident response plans and procedures. Coordinate and lead incident response activities, including containment, eradication, and recovery. Conduct post-incident reviews and implement corrective actions to prevent recurrence. EDR and M365 policy creation and management to reduce false positive and close all alerts are timely manner. Data Loss Prevention (DLP): Develop, implement, and maintain DLP policies to protect sensitive data. Monitor and analyses DLP alerts to identify and address potential data breaches. Conduct regular reviews of DLP policies and procedures to ensure effectiveness. Cloud Security Architecture and Controls: Design, implement, and maintain secure cloud architectures, incorporating security best practices. Implement and manage cloud security controls, including identity and access management (IAM), encryption, logging, and monitoring. Evaluate and select cloud security tools and technologies. Implement and manage Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) tools. Ensure secure configuration of cloud services. Implement and manage cloud native logging and monitoring. Threat Hunting: Proactively hunt for threats and anomalies within the network and systems. Utilize threat intelligence and security analytics tools to identify potential security risks. Develop and implement threat hunting methodologies and procedures. SOC Metrics & Reporting: Develop and maintain key performance indicators (KPIs) and metrics to measure SOC effectiveness. Generate regular reports on SOC activities, incident response, and security posture. Present security metrics and reports to management. Key Qualifications: Bachelor’s degree in computer science, Information Security, or a related field. Minimum of 5+ years of experience in security operations, with a focus on SOC management, incident response, and threat hunting. Strong understanding of security principles, technologies, and best practices. Experience with SIEM, IDS/IPS, EDR, and other security tools. Knowledge of DLP, firewall management, and vulnerability management. Experience with security audits and compliance frameworks (e.g., SOC 2, ISO 27001, PCI DSS). Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work effectively in a fast-paced environment. Relevant security certifications (e.g., CISSP, CISM, CEH, CompTIA Security+).

Apply Now