Job ID 238891
The challenging and satisfying area of Defence can now offer an experienced SOC Lead a fantastic opportunity on their team.
We are looking for you to lead the large SOC Transformation and be responsible for all Security Operations Centre Services and Protective Monitoring System whilst overseeing all SOC Team members. As the SOC Lead, you will take overall responsibility for the security analysis, incident classification and incident response actions such as notifications and alerting, as well as monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network.
If you are an outstanding and highly motivated individual with passion and desire to contribute to the positive reputation of our business, we would love to hear from you!
What you will be doing:
Monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network
Identification of incidents, analysis and investigation to determine their severity and the response required
Ensure that all incidents are correctly reported and documented
Provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence
Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network
Author Protective Monitoring/SOC documentation, processes and procedures and ensure currency
Manage all SOC Analysts and Engineers – from supervising day to day work through to timesheets/leave requests and HR
Provide OJT to develop junior members of the SOC team
Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified
Escalate and support potential security incidents
Manage communications of potential security incidents via multiple channels
Perform assurance of security posture through monitoring security system status
Create and interpret regular and ad hoc security reportsWhat you'll bring:
Previous SOC Lead Experience
Previous experience working on a transformation
Support and training of SOC Team
SIEM Monitoring, alerting & event analysis
Network and host IDS monitoring alerts
IT systems architecture understanding
Malware types, Vulnerabilities, associated threats and exploits
Email gateway attacks
Understanding and appreciation of IT systems forensics
Tuning/creation of Reports and Trends for the Client
Incident escalation and detailed activity log/timeline of events & actions It would be great if you had:
Degree or equivalent in Computer Science or IT SecurityIf this role sounds like something you would be interested in, please send your CV, ideally in Word format, via this site.
If this role is not quite right for you but you would like to have a conversation about other roles, please search and connect with me, Cody Murphy, on LinkedIn