Cybersecurity Supervisor

Job Title: Security Operations Manager

Job Summary: We are seeking a highly skilled Security Operations Manager to join our team at Experis - ManpowerGroup. As a Security Operations Manager, you will be responsible for delivering DCO outcomes across the OpNET platform and ensuring operational security processes are enacted at every level.

Key Responsibilities:

• Responsible for integration of standard and non-standard logs in SIEM.
• Management and coordination of the incident response and forensic processes.
• Ensuring compliance to policy, process, and procedure adherence and process improvisation to achieve operational objectives.
• Revising and developing processes to strengthen the PROTECT, DETECT and RESPOND delivery.
• Responsible for overall use of resources and initiation of corrective action where required.
• Ensuring daily management, administration & maintenance of security devices to achieve operational effectiveness.
• Ensuring threat management, threat modelling, identify threat vectors and develop use cases for security monitoring.
• Driving tools development and integration, including Defence Cyber Capability (DCC) and Cyber Enabling Architecture (CEA).
• Creation of reports, dashboards, metrics for SOC operations and presentation to OpNET CISO and Security Working Group (SWG).
• Deliver co-ordination with stakeholders (both internally within D&IS and externally with the CyISOCs), build and maintain positive working relationships with them, and ensure outputs are aligned.
• Work with the rest of the SOC team to support analysts with performance feedback, training, and career direction.
• Assist with screening and hiring security analysts and security engineers.
• Support routine governance and compliance audits, and accreditation activities.

Requirements:

• Hold current DV clearance.
• Strong supervisory and management skills, and the ability to guide others during incident, vulnerability and crisis management events.
• Able to tune correlation rules, event and outcomes via SIEM and SOAR platforms (specifically Elastic).
• Ability to articulate and escalate proposed changes to tooling configuration.
• Strong background in Analysis of attacker Tactics, Techniques and Procedures (TTPs) and Indicators of Compromise (IoC).
• Familiarity with Linux and Windows capabilities and with network and host based forensic processes.
• Familiarity of the investigation of malware and host compromise incidents.
• Understanding of intrusion detection systems, web application firewalls, and IP reputation systems.
• Technical understanding of current cybersecurity threats and trends.
• Working knowledge of the NIST frameworks, including NIST 800-12, & 800-37a and JSPs 440 and 604.
• ISO 27001:2013 security and risk controls.
• MITRE ATT&CK adversarial framework.
• ITILv3/v4 Foundation.

Desirable Qualifications:

• CompTIA A+.
• CompTIA Security+.
• CompTIA CySA+.
• CompTIA PenTest+.
• SANS MGT551: Building and Leading Security Operations Centres.
• CISSP / CISM.
• SANS Critical Security Controls / SANS Advanced Security Essentials.
• ITIL v3/v4 Intermediate.
• SANS 504 (Incident Handling).
• SANS 511 (Continuous Monitoring).

About Experis - ManpowerGroup: Experis - ManpowerGroup is a leading provider of workforce solutions and services. We help our clients achieve their business objectives by providing them with the right talent, at the right time, and in the right place.