SOC Manager

Essential skills/knowledge/experience:

• Strong knowledge in Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) and SOC advancements such as EDR and SOAR.
• Good knowledge of SIEM technologies, like Google Chronicle, Splunk ES or QRadar.
• In-depth understanding of security policies based on industry standards and best practices.
• Previous experience within the information security field, with emphasis on security operations, incident management, intrusion analysis, security device installations, configuration, and troubleshooting (e. g., firewall, IDS, etc.).
• Experience in Log source integration.
• Knowledge of Developing new correlation rules & Parser writing.
• Hands-on experience in SOC automation development, cloud operations (e. g. AWS), Designing, building security operations centers and Regulatory Compliance.
• Ability to lead and communicate efficiently within a team environment along with Incident management process development and incident management experience.
• Solid understanding of information technology and information security.
• Excellent communication and presentation skills with demonstrated skill in presenting analytical data effectively to varied audiences (including executives).
• Ability to work well under pressure with differing levels of Management.

Desirable skills:

• Experience with an Agile workflow.