We have an urgent requirement for SOC Manager- SIEM one of our client in Dubai, UAE
SIEM security process, procedures and policies is MUST
IDS, Security Event Management and anomaly detection tools is MUST
Roles/Responsibilities
- Enhancements to SIEM security process, procedures and policies
- Security incident management, incident response, incident analysis, risk management, information security controls.
- Good Knowledge of security applications such as IDS, Security Event Management and anomaly detection tools.
- Must have good understanding of SIEM, SOAR, UEBA, NBAD, Threat Intel platform and EDR technologies
- Ability to trace down an endpoint on the network, based on ticket information.
- Ensure that corporate data and technology platform components are safeguarded from known threats.
- Document and maintain customer build documents, security procedures and processes.
- Staying up to date with emerging security threats including applicable regulatory security requirements.
- Research/evaluate emerging cyber security threats and ways to manage
- Risk assessments and develop Plan of Actions and Milestones
- Digital investigations including computer forensics, network forensics and memory analysis.
- Assign responsibilities and duties as a security management representative.
- Planning and execution of projects.
- Manage and track progress of projects.
- Guide on SIEM operations.
- 24x7 on call support.
- Customer support.
- Extended support to resolve the critical issues.
- Creation of Blueprints, SOP and setting up processes.
- Problem management.
- Incident and Change management.
- Modify Standard Operating Procedures (SOPs) and training documentation.
- Coach junior team members.
- Have a solid understanding of enterprise environments including networking, web services, databases, operating systems, etc.
- Ensure SLA are achieved & work proactively to maintain the same.
- Keep track of latest threats and vulnerabilities
- Min. 10 years’ experience from a security analysis role and from BFSI vertical will be added advantage
- Working as per business hours
Experience / Skills/Qualifications
- Education Qualification – Any Graduation with minimum 60%
- Certification – Any one GCFA / GCFE / CISSP / OCSP / CCIE / CEH
Skills: soar,memory analysis,security procedures,network forensics,coaching,incident management,nbad,incident response,anomaly detection tools,management,customer support,risk management,threat intel platforms,information security controls,security event management,ids,ueba,problem management,project management,change management,digital investigations,soc,computer forensics,siem,edr technologies