SIEM SOC Architect

Experience:

1. Experience in cybersecurity, with a focus on threat detection, incident response, and threat intelligence.
2. Proven experience leading and managing a cybersecurity team in a dynamic and complex environment.
3. Hands-on experience with advanced threat detection tools and technologies (e.g., SIEM, EDR, NDR).

Skills:

1. Strong understanding of cybersecurity threats, attack vectors, and mitigation strategies.
2. Excellent analytical and problem-solving skills, with the ability to think critically and act decisively under pressure.
3. Strong leadership and team management skills, with the ability to motivate and develop team members.
4. Effective communication and interpersonal skills, with the ability to collaborate and influence across all levels of the organization.

Summary: SOC manager is a strategic and hands-on role responsible for leading and managing the organization's threat detection and response. This role requires a deep understanding of cybersecurity threats, advanced detection technologies, incident response methodologies, and a proactive approach to threat hunting. The MDR Leader will work closely with various stakeholders, including IT, Risk Management & Compliance, to ensure the security and resilience of the organization's information systems.

Key Responsibilities:

Leadership and Strategy:

1. Develop and implement a comprehensive threat detection and response strategy aligned with the organization's cybersecurity goals.
2. Lead and mentor a team of cybersecurity analysts, threat hunters, and incident responders.
3. Stay informed about the latest cybersecurity threats, trends, and technologies to continuously enhance the MDR capabilities.

Threat Detection and Monitoring:

1. Oversee the design, implementation, and management of threat detection systems, including SIEM, EDR, NDR, and other advanced monitoring tools.
2. Develop and maintain threat detection rules, use cases, and playbooks to identify and respond to security incidents effectively.
3. Ensure continuous monitoring of network traffic, system logs, and other data sources to detect and investigate potential threats.

Incident Response:

1. Lead the incident response team in the investigation and remediation of security incidents.
2. Coordinate with internal and external stakeholders during incident response activities to ensure timely and effective resolution.
3. Conduct post-incident reviews to identify lessons learned and improve incident response processes.
4. Availability to respond to security incidents outside of regular business hours as needed.

Threat Intelligence and Hunting:

1. Manage the threat intelligence program to gather, analyze, and disseminate threat information.
2. Proactively hunt for threats within the organization's environment using advanced threat hunting techniques and tools.
3. Collaborate with external threat intelligence sources and industry partners to enhance situational awareness.

Collaboration and Communication:

1. Work closely with Customer & client stakeholders to ensure alignment of security measures with business objectives.
2. Communicate security risks, incidents, and mitigation strategies to leadership and other stakeholders.

Reporting:

1. Prepare and present regular reports on threat detection and response activities, metrics, and outcomes to senior management.
2. Manage and maintain documentation related to threat detection and response processes, incidents, and lessons learned.

Experience:

1. Minimum 10 years of experience in cybersecurity, with a focus on threat detection, incident response, and threat intelligence.
2. Proven experience leading and managing a cybersecurity team in a dynamic and complex environment.
3. Hands-on experience with advanced threat detection tools and technologies (e.g., SIEM, EDR, NDR).

Skills:

1. Strong understanding of cybersecurity threats, attack vectors, and mitigation strategies.
2. Excellent analytical and problem-solving skills, with the ability to think critically and act decisively under pressure.
3. Strong leadership and team management skills, with the ability to motivate and develop team members.
4. Effective communication and interpersonal skills, with the ability to collaborate and influence across all levels of the organization.