SOC Team Lead

TITLE: SOC TEAM LEAD Location: Chicago, IL; Kansas City, MO; Des Moines, IA A global financial organization is seeking an experienced SOC Team Lead. The SOC Team Lead is a highly visible role and will be responsible for providing direction, mentorship and supervising a global SOC Analyst team. The ideal candidate will have excellent customer service, analytical and troubleshooting skills along with the ability to work under pressure. It is key for the SOC Team Lead to be able to quickly and efficiently resolve security issues while maintaining high levels of operational metrics. It is imperative that support for internal colleagues is provided as well to include the support of escalated ticket-based work, providing training on various security devices and concepts, and creating documentation to better achieve operational goals. Excellent communication skills are required.RESPONSIBILITIES:

• Responsible for leading a team of personnel in a SOC environment
• Be able to prioritize and direct workflow
• Addressing technical and non-technical escalations
• Coordinate and schedule shift coverage, and assign resources for special task
• Monitor incidents and Meet service level agreements
• Help establish and enforce policy and procedure
• Coach and mentor all levels of skills-sets within the team
• Mentor a Jr. Analyst through a task or problems
• Lead investigations in response to security incidents
• Assist in Identifying opportunities to improve our processes
• Assist updating security documentation to include tactics, techniques, and operating procedures
• Develop and maintain IT Security Operations liaison relationships with oversees-based Security Operations teams
• Assist Leadership in operation of a Distributed Security Operation Team.
• Participating in a 24x7 security incident response on-call rotation

• Bachelor's degree in Computer Engineering, Computer Science, or Information Systems
• 8+ years working with a Security Operations team
• 1+ years as a Team Lead within a SOC environment
• Must have experience with security-related technologies including active directory, host-based firewalls, host-based intrusion detection systems, logging, and monitoring tools, EDR, and EDR systems, network monitoring and network-based security facilities.
• Extensive experience with firewall technology
• Extensive experience managing crisis teams and performing incident response
• Generally familiar with basic scripting/programming: Examples such as: PERL, BASH, SQL
• Ability to coach and mentor all levels of skillsets within the team
• Intermediate to advanced level device configuration changes, network troubleshooting, and security-related issues
• Knowledge of Linux administration with command line and system knowledge
• Extensive experience with Windows administration/system
• Excellent problem-solving skills and keen ability to diagnose and troubleshoot technical issues
• Industry certifications are desired but not required: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or Information Security System Management Professional (ISSMP)
• Dedication to client service and passion for learning
• Well spoken, articulate, attention to detail, with excellent writing abilities
• Must be able to communicate technical details in a clear manner
• Ability to manage multiple projects/task