Oreta - Manager - Security Operations Center (10-15 yrs)

Job Description :

We are looking for a highly skilled and experienced Senior Security Operations Centre (SOC) Manager with a focus on SIEM tools to join our security team. As a SIEM Tools Specialist, you will be responsible for monitoring and analysing security events for multiple clients utilising our SIEM tool. You will undertake timely and accurate detection, investigation, and response to security incidents.

In this role, you will collaborate closely with other security professionals, including threat hunters, incident responders, and forensic analysts, to ensure that the security operations centre (SOC) is always operational and that all security incidents are handled in a timely and effective manner to meet SLAs. You will also be responsible for ensuring that the SIEM tool is properly configured, managed, and optimised to meet the clients security requirements.

Responsibilities :

- Lead the analysis and investigation of information security events (IDS/DLP/SIEM/etc.) in a 24x7 SOC environment to immediately detect, verify, and respond swiftly to cyber threats, and remove false positive.

- Serve as a technical point of escalation.

- Responsible for investigating incidents, analysing attack methods, researching new defence techniques and tools, developing security policy, and documenting procedures for SOC.

- Maintain baselines for secure configuration and operations.

- Malware analysis and other attack analysis to extract indicators of compromise.

- Perform data security event correlation between various systems.

- Prepare reports, summaries, and other forms of communication that may be both internal and client facing.

- Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.

- Develop and deploy processes to ensure efficient and effective security operations.

- Provide guidance and mentorship to other security analysts and junior members of the security team.

- Keep up-to-date with the latest trends and best practice developments in the field of cybersecurity and SIEM tools

Skills and Capabilities :

- At least 7 years of experience working in a SOC environment, with a focus on using multiple SIEM tools.

- Strong understanding of security operations and incident response processes

- Hands-on experience with at least two major SIEM tools (e.g., MS Sentinel Rapid7, Exabeam Splunk, ArcSight, QRadar,)

- Strong analytical and problem-solving skills

- Excellent communication and interpersonal skills

- Ability to work in a fast-paced, dynamic environment

Desirable Skills, knowledge and experience :