SOC Manager
Symantec
Office Park, Dubai, DIC , ARE
منذ 29 يوم

Company Overview

Symantec was founded in 1982 by visionary computer scientists. The company has evolved to become one of the world’s largest software companies with more than 18,500 employees in more than 50 countries.

We provide security, storage, and systems management solutions to help our customers from consumers and small businesses to the largest global organizations secure and manage their information-

driven world against more risks at more points, more completely and efficiently than any other company

The Role

The CSOC Manager is responsible for the overall CSOC Operations and service delivery of the CSOC to the customer. The CSOC manager is responsible for reporting, managing the CSOC team of 15 analysts and content engineers and coordinating with other teams in the business to enhance the detection capabilities within the CSOC .

Responsibilities

  • Oversee and coordinate the activities of CSOC personnel supporting the security of critical production environments
  • Own and enhance the performance management process for the team. Execute performance reviews
  • Actively participate in the selection of new CSOC team members
  • Manage the rotation of resources in the SOC and regularly prepare the shift roster
  • Support execution of Incident Response Plan (in collaboration with Senior Analysts Analyst) and also provide support during incident response as and when required
  • Manage and report on the activities and performance of the CSOC as a whole
  • Evaluate and update policies and procedures as appropriate and also ensure personnel always follow policies and procedures
  • Ensure the availability of the CSOC security components and manage the service availability by collaborating with external support organizations
  • Collaborate with all required entities, such as the CISO, Senior Security Management, and other security teams to ensure effective CSOC services are implemented and operated accordingly to the customer s policies and procedures
  • Provide reports and statistics as required to respective stakeholders
  • Share intelligence information, develop and maintain relationships with the security partners, industry verticals and government liaisons, etc.
  • Provide input to resource planning, budget development and cost control limited to the CSOC environment.
  • Oversee incident response planning and handling as well as the investigation of security breaches, and provide regular updates to the management
  • Periodically measures the performance of the CSOC and reports the results to the Customer management
  • Ensure the overall quality of the CSOC operations
  • Be aware and in sync with customer policies and adjust CSOC processes accordingly
  • Forecast staff needs, coaching, motivating and developing team members
  • Build training and enablement plans for the teams
  • Skills & experiences

    Security Operations Management :

  • Proven experience in implementing and managing processes and procedures related to SOC
  • Knowledge of current and emerging TTPs
  • Expert Knowledge of securing networks and enterprise scale systems
  • Knowledge in Web Application Security principles
  • Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins
  • Understanding of cyber security as related to Operations in a CSOC
  • High Level understanding of information security standards
  • Knowledge of forensics principles
  • Knowledge of enterprise incident management, lifecycle, roles, and responsibilities
  • Experience in handling High Profile security incidents such as data breaches or compromised networks by advanced adversaries.
  • Characteristics :

  • Balanced goal and process orientation
  • Ability to prioritize under pressure
  • Operates in the detail
  • Strong leadership and decision-making ability.
  • Remains calm and organized in stressful situations
  • Motivating and empowering the team
  • Active involvement in management discussions
  • Excellent interpersonal, presentation and facilitation skills
  • Able to coordinate CSOC efforts in line with the bigger picture to maximize the overall value of CSOC delivery
  • Able to provide strategic direction to ensure the team is performing and achieving the goals
  • Active in building relationship with internal and external parties to support SOC operations Self-motivated, curious, knowledgeable pertaining to cyber security
  • Experiences :

  • Overall 8+ years’ experience working in a large-scale IT environment with focus on Information Security
  • Experience in direct line management (not matrix) of a team size of more than 10 staff
  • Proven experience in Red Team exercises / Penetration Testing (might need to provide anonymized red team reports)
  • Minimum 2-year experience in an Enterprise SOC environment as a Senior Threat Analyst / Threat Intel Analyst / Incident Responder or Coordinator
  • Knowledge of Security vendors solutions such as ATP, Mail Filtering, Traffic Analysis, SIEM, Forensics
  • Active Participant in CTF (Capture the Flag) events
  • Active in the technical Cybersecurity community by sharing intelligence, creating tools (must provide GitHub link) is highly appreciated
  • Qualifications

  • ISC2 Certified Information Systems Security Professional (CISSP)
  • SIEM Certifications (Splunk as priority, others are also accepted)
  • SANS GCIH or GCIA certified
  • Forensics Certifications are appreciated
  • OSCP certification is highly appreciated
  • Hacking and Reverse Engineering Certification are appreciated
  • Bachelor’s Degree or 3 years of college in a Technology Related subject
  • Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.

    قدِّم
    قدِّم
    بريدي الالكتروني
    بالنقر فوق "متابعة" ، أوافق على خصوصية وشروط Neuvoo وأوافق على تلقي تنبيهات مهمة عبر البريد الإلكتروني. (الإلغاء في أي وقت) انظر هنا
    واصل
    استمارة الطلب