SOC Lead Engineer
SOC Lead Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Configure deploy maintain and constantly enhance security technologies such as SIEM/SOAR (Google Chronicle) EDR/EPP(Crowdstrike) and other securityrelated solutions.
Support in leveraging Google Chronicle SOAR capabilities by designing and implementing SOAR playbooks including necessary integration and automation.
Develop and fine tune content for the different tools including but not limited to SIEM Use Cases SOAR playbooks Threat intelligence watchlist and rules.
Select and recommend additional security solutions or enhance existing security solutions to improve overall METRO detection and response capabilities as per the METRO cyber security strategy.
Ensure the confidentiality integrity and availability of the data residing on or transmitted to/from/through SOC controls.
Generate reports and documentation related to platform performance and continuous improvement recommendations for management and stakeholders.
Technical & Soft Skills:
Indepth knowledge and handson experience with SOC technologies and tools such as Google Chronicle SIEM CrowdStrike EDR/EPP Vectra NDR Recorded Future TI etc.
Strong knowledge and skills in scripting and development of automation and orchestration code.
Strong handson experience with various operating systems networking protocols and application architectures.
Indepth Knowledge of industry standards and frameworks such as MITRE ATT&CK Magma Framework NIST ISO 27001 etc.
Familiarity security operations center (SOC) operations incident response threat detection and vulnerability management.
Excellent communication and interpersonal skills to effectively collaborate with clients stakeholders and internal teams.
Analytical and problemsolving skills to identify and troubleshoot SOC platform technical issues.
Ability to adapt to changing security threats and evolving business requirements.
Strong organizational and time management skills with the ability to coordinate and prioritize multiple tasks simultaneously.
Ability to work under pressure especially during critical security incidents.
Qualifications :
Bachelors degree in Computer Science Information Technology Cybersecurity or a related field. A Masters degree or relevant certifications (e.g. Comptia Security SANS/GIAC) may be preferred.
- Experience 7 years.
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
