SOC Operations:Oversee daily SOC functions, ensuring prompt monitoring, detection, and response to security events. Manage incident response, including triage, investigation, and recovery. Improve SOC procedures and workflows for efficiency.
Team Leadership:Guide and mentor security analysts, providing training and professional development. Manage shift schedules for 24/7 coverage. Conduct performance reviews and give feedback.
Incident Management:Handle escalated security incidents, coordinating with internal and external stakeholders. Develop and update incident response playbooks and ensure team training. Collaborate with IT to resolve incidents.
Threat Intelligence:Oversee threat intelligence collection and analysis to address emerging threats. Ensure SOC tools are current and effective. Adapt strategies to evolving threat landscapes.
Security Tools Management:Ensure proper functioning of SOC tools and technologies. Implement and configure new security technologies. Review and improve security tool effectiveness.
Compliance and Reporting:Ensure compliance with regulations and standards. Prepare reports on SOC performance and security trends for senior management. Maintain documentation related to SOC operations.
Continuous Improvement:Drive SOC enhancements through automation and advanced analytics. Stay updated on industry trends and new technologies. Align SOC strategies with broader cybersecurity goals.
Any other ad hoc duties as assigned by supervisor.
Qualifications:
Education: Bachelor's degree in Cybersecurity, IT, Computer Science, or related field. Relevant certifications (e.g., CISSP, CISM) are a plus.
Experience in cybersecurity, with 3 years in a SOC leadership role. Experience in incident response and security operations management.
Skills: Knowledge of cybersecurity frameworks and threat landscapes. Proficiency with security tools like SIEM and IDS/IPS.
Interested applicants, please email your resume to Andre Chua Jing Ming