As an Full Time employee - SOC Team Lead you will be responsible for:
Manage a Security Operations Center (SOC) team to ensure customer deliverables are met, providing EiQ customers the highest quality of Security Monitoring, Vulnerability Management, Patch Management, and other services.
Oversee 24/7 SOC operations, ensuring all activities are completed as required
Work closely with L1 & L3 team members to provide quick support & escalation.
Lead the SOC to ensure that sources of security threat information, threat intelligence, security trends, and other sources of security domain information are utilized to the fullest in providing services to EiQ customers
Configure queries, correlation rules, dashboards, alerts, searches, reports, etc., based on operating systems, platform, data type, and other reporting elements
Install and configure the SIEM including all its components, local & or remote log collectors
Plan & execute SIEM migration activities
identify, design & implement use cases to address PCI compliance along with specific enterprise security requirement.
Maintain security dashboards
Documentation of security solutions
Here's what we are looking for:
Bachelor's degree or the equivalent in experience.
Minimum 5-6 years of experience.
Experience with managing, developing, and establishing best practices in a Security Operations Center
Proven ability as a critical thinker, capable of conceptual and strategic thinking, strong decision making skills
Strong leader with team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including: customers, partners, senior management, technology vendors
Strong technical understanding of current cyber security threats and trends
Desirable security and technical Certifications: CISSP, CISM, GISF, GSEC, CEH
Knowledge about security technologies such as firewalls, encryption using keys, SSL, HTTPS, SSH, intrusion detection,routing switch ACLs, VLAN, Span Ports, Network IDS / IPS platforms
Have a solid working knowledge of networking technology and tools, firewalls, proxies, and the OSI Model, including TCP/IP protocols and standards.
Knowledge of Security standards like PCI-DSS, ISO 27001, etc.