Job Descriptions:
• Lead and manage a small SOC team for daily/weekly/monthly operations
• Coordinate with customer PICs and DFIR specialist for incident response
• Manage MSSP vendor for service rollout and quality improvement
• Lead the team to support the incident response via EDR platform
• Daily communication with customers and vendors for issue/incident follow-up and closure
• Attend daily meetings with customers
• Manage the trial and POC activities
Qualification
- Male / Female age 30-45 years old
· Bachelor's or Master's degree in Computer Engineering, Computer Science, Information Technology, Electrical, Telecom or related fields.
· 10-20 years of experience.
· Past experience to lead SOC team for daily alert handling and monthly reports
· Background in at least 2 of the following domains; security products and technologies; security engineering, networking protocols and data center; security analysis and investigation
· Project management skills and experience
· Strong on process and keen on process improvement
· Experience working with cyber security solutions such as SIEM, Intrusion Prevention, Endpoint Security, and Mail/Web Proxy
· Experience with SIEM and DFIR tools
· Experience with scripting languages, e.g. python, perl, shell bash and etc
· • Fluent in english language
· • Able to train and coach other SOC team members
· • Able to work under stress
· • Able to work within SLO/SLA
· • CISSP/CISM
· • Any other security certification