SOC Manager

The Role 

You will be responsible for the overall service delivery of the SOC and is the one that support and drive the analysis of the most complex incidents and task the SOC have to deal with. You will also responsible for the reporting and to coordinate with external entities involved in the tasks.

Responsibilities:
 

• Oversee and coordinate the activities of SOC personnel supporting the security of critical production environments
• Manage the rotation of resources in the SOC and regularly prepare the shift roster
• Support execution of emergency procedures (in collaboration with L3 Analyst) and also provide support during incident response as and when required
• Manage and report on the activities and performance of the SOC team
• Evaluate and update SOC policies and procedures as appropriate and also ensure SOC personnel always follow SOC policies and procedures
• Verify all SOC security components are functioning optimally
• Collaborate with all required entities and other security personnel to ensure effective SOC services are implemented accordingly to the environments
• Provide reports and statistics as required to respective stakeholders
• Share intelligence information and developing and maintaining relationships with the security partners, industry verticals and government liaisons, etc
• Provide input to resource planning, cost estimation, budget development and cost control limited to the SOC environment
• Oversee incident response planning and handling as well as the investigation of security breaches, and provide prevention and recovery progress to management
• Periodically measures the performance of the SOC and reports the results to the Emirates management.
• Ensure the overall quality of the SOC operations
• Regularly track the timeline compliance of the SOC activities
• Forecast staff needs, coaching, motivating and developing team members

Skills & experiences
 

• Security Operations Management
  • Proved experience in implementing and managing processes and procedures related to SOC
  • Knowledge of current and emerging threats/threat vectors
  • Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools
  • Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins
  • Knowledge of new and emerging information technology (IT) and information security technologies
  • Knowledge of the organization’s enterprise vision, mission, goals and objectives
  • Knowledge of cyber security GRC, standards, best practices and concept
  • Knowledge of applicable cyber security related laws and regulations
  • Knowledge of forensics principle
  • Knowledge of enterprise incident management lifecycle, roles, and responsibilities
  • Knowledge of organization's risk tolerance and/or risk management approach
  • Highly result oriented and able to manage teams
  • Strong leadership and decision making ability
  • Motivating and empowering the team
  • Active involvement in management discussions
  • Proven skills in program management including project initiation, scoping, resourcing, scheduling, budgeting, risk management and communication
  • Excellent interpersonal, presentation and facilitation skills
  • Able to coordinate SOC efforts in line with the bigger picture to maximize the overall value of SOC delivery
  • Able to provide strategic direction to ensure the team is performing and achieving the goals
  • Active in build relationship with internal and external parties to support SOC operations
  • Self-motivated, curious, knowledgeable pertaining to cyber security news and current events
• Overall 10+ years’ experience working in a large-scale IT environment with focus on Information Security
  • Minimum 5 year experience in managing a team size of up to 10 employees
  • Minimum 5 year experience in SOC environment

Education
 

• Suggested Certifications:
  • Project Management Professional (PMP)
  • ISACA Certified in Risk and Information Systems Control (CRISC)
  • ISC2 Certified Information Systems Security Professional (CISSP)
  • Cisco, Checkpoint and other security product related certifications are appreciated
  • Forensics Certification are appreciated Hacking and Reverse Engineering Certification are appreciated
  • Any Bachelor’s Degree or 3 years of college courses in Computer Science or Information Technology
  • Master Degree in Information Technology or Master in IT Business Administration is appreciated