27 Nov
SMD2020-3488-Information Security Operations Lead/SOC Lead
Vacancy expired!
Candidate must be Authorized to work in the United States with any employer, No Visa Sponsorship, No C2C candidates please, No Third Party agencies. This is a direct hire
Job Title: SMD2020-3488-Information Security Operations Lead/SOC LeadLocation: Baltimore, MarylandDuration: 1 Years The Client is looking for an information security operations lead. With guidance from the Deputy Chief Information Security Officer, you will monitor the managed security services provider and other client information security partners. You will also serve as a lead for client security operations and will be responsible for mentorship of junior analysts and development of procedures in the form of information security playbooks. In addition, you will provide technical guidance on how to investigate and respond to security events and lead information security incident response efforts. This is a challenging role within a growing information security team. It’s an opportunity to perform as an information security operations subject matter expert, while broadening your skills in enterprise wide information security program implementation. Primary Responsibilities:- Identify information security monitoring capability enhancement ideas for increased detection and remediation.
- Guide the managed security service provider and other client information security partners to validate the appropriate identification, investigation, response and remediation are on
- Drive the implementation of new information security monitoring use cases into the managed security services provider based
- Mentor information security analysts through triage and remediation escalations from the managed security service provider as well as other security
- In collaboration with DCISO, develop procedures and ‘playbooks’ for triage and remediation of information security alerts and incidents.
- Mentor information security analysts and IT personnel to operate within playbooks as
- Report on information security monitoring related metrics and key performance indicators (KPIs) as defined by client CISO and DCISO.
- Lead incident response activities, advise and coordinate with senior leadership during active
- Operate autonomously to further investigate and escalate security events in accordance with protocols and
- Be a leader in the expansion and growth of the information security monitoring capability within client information security program; drive integration of new products and services.
- Provide regular status updates and briefings to Information Security management and outside
- Bachelor's Degree or equivalent work experience in computer engineering/science or related
- 5 to 8 years of information security, continuous monitoring, and SOC operations
- 3 plus years of SOC tier III level incident response
- Solid understanding of security fundamentals and information security control
- Basic technical understanding in the following areas: network communication using TCP/IP protocols, basic system administration, virtual systems, active directory architecture, cloud technologies, web proxies,
- Good team player with excellent interpersonal skills, self-confident, motivated, and capable of working with little to no
- Ability to multi-task and work under pressure in a fast-paced
- Attention to details and good problem-solving skills.
- Advanced communications and presentations skills (verbal and written) enabling precise conveyance of
- Knowledge of MITRE ATT & CK
- Supervisory and operational experience in 24x7 environment.
- Relevant certifications (CISSP, CEH, GSEC, )
Vacancy expired!