Description
We are currently recruiting for our well established client, please find below the detailed job description.
Location: Canary Wharf (Remote until further notice)
Responsibility:
SOC Team Lead undertakes a broad range of information and IT Security activities. The role has wide ranging responsibilities for Technical IT security covering business as usual activities and projects and leads/develops a team of Security analysts/specialists providing service.
The SOC Lead remains responsible for security monitoring service and provides Level 2 and 3 security incident response, threat assessment and vulnerability management across the DEFRA estate providing both upward and downward communications. Additionally, the role takes ownership of relevant 3rd party suppliers and provides continuous ownership of security risks associated with the government department.
Primary responsibilities:
Provide operational management, continuous improvement and direction of the SOC
Lead multi-functional security initiatives across the department and build relationships with leadership to influence change and drive constancy with configuration management security standards.
Ensure the team stays up to date with current security vulnerabilities, attacks, and countermeasures
Create and maintain SOC processes, Standard Operating Procedures (SOPs) and playbook documentation with a goal of automating repeatable tasks within the team for optimal and efficient service delivery
Ensure Service Level Agreement (SLA) achievement for all customers
Define & own Security intelligence, vulnerability & Incident management framework process (alongside TI)
Work directly with other SOC, IT Support & development team members on security incident containment and mitigation activities
Provide direct communication to customers, peers, team and managers regarding security intelligence, incident and change management activities
Preparing and participating in Monthly/Quarterly governance forums on Risk & performance
Obtain/maintain technical/professional certifications applicable to position or as requested by management
Typical Key Skills:
Associate degree or above or equivalent technical degree and or required years of industry experience
Multiyear experience working in a MSSP, NOC or SOC
Demonstrates broad knowledge of cybersecurity technologies, trends and strategy.
Strong analytical skills to define risk, identify potential threats, and develop action/mitigation plan.
Strong interpersonal skills, ability to mentor/train staff and bring awareness to current and emerging threats.
Possession of Industry Certifications (CISSP, CISA, CISM, ITIL, CCNA, CCNP, CCIE)