Description
- Reinforce the Security Detection and Monitoring team in the worldwide Security Operation Centre
Main tasks
- Management of Level 1 and Level 2 activities for daily operations
- L1: triage and first analysis and investigation team
- L2: investigations and review, improvement of the tooling of the SOC Engineering
- Responsible for the Use Cases specifications, tuning and maintenance
- Responsible for the quality of service
- For the management of security alerts, security incidents
- Interface with our stakeholders (subsidiaries, other security teams)
- Increase the efficiency of the Detection of the SOC by continuously looking for optimization, decrease the workload, process improvement
Skills required
- Good knowledge in security
- Tools: all security devices (IDPS, AntiDDoS, FW, Proxy, WAF, VPN)
- Standard: ISO27x
- Threats: good understanding of threats and technics
- Good understanding of what are the cyber challenges for an international company
- SOC experience
- Strong experience in SOC operations
- Knowledge of SIEM Tools: Arcsight or any other similar tool
- Excellent analytical skills
- Field experience
- Strong experience in IT and/or security operations
- Customer-oriented mindset
- Expertise as a Service Lead
- Very good written and spoken (international context)
- Team work
- Team Spirit
- Excellent communication capabilities
- Customer-oriented mindset International
- Expertise working within an international team
- Offshore contracts management
- This position may require some travel in Asia
Experience
- 5 years in IT/IS operations and/or services
- 3 years in SOC/SIEM
- 3 years as a Service Lead
Expected deliverables
- Follow-up for L1/L2 activity
- UC dashboard follow-up
- Meeting with Head of SOC (weekly basis)
- Meeting with L1 team(weekly basis)
- Documentation for all improvement activities
- Documentation for all processes