Associate Lead - Security Operation Center Team

Discipline - Information Technology

Industry - IT Security

Job Description - Job Responsibilities

This role is analyst(s) for the Security Operation Center Team. In this important position, you will keep it possible for the organization to defend its assets with clear vision and situational awareness in a persistent, dynamic, and highly complex threat environment.

- Monitoring and processing various sources to produce actionable intelligence for multiple consumers

- Identify new opportunities/threats in the network to improve the security of the network.

- Continuously evaluating existing sources for value and supporting decision-making related to the future use of those sources

- Mentoring and developing less experienced team members

- Monitoring the team's output for quality and value

- Supporting the creation and implementation of new processes as appropriate

- Staying current on cyber security best practices, news, issues, vulnerabilities and threats (specifically as they apply to the healthcare and financial industries)

- Supporting relationships with partner teams

- Fulfilling routine and ad-hoc reporting requests

- Ability to work and influence successfully within a matrix driven environment and build effective business partnerships with all levels of team members.

- Responsible for monitoring project delivery success metric and work with teams to take corrective actions.

- Responsible for team adherence to Key Performance (KPIs) Indicators.

- Act as a subject matter expert and liaison to business, to introduce, implement and ensure client and business objectives are continually met.

- Monitor and administer enterprise log correlation (SIEM).

- Select, design, implement and manage security measures to reduce the risk of loss.

- Evaluate and develop approach to solutions.

- Perform analysis of suspicious URLs, emails, network anomalies, and binaries.

- Identify current attacks using internal tools or task intelligence sources to provide in-depth analysis of any current or prior attacker activity to support groups.

No. of Openings - 0

Qualification - Must Have Skills:-

- 8-10 years IT security work experience

- 2-4 years management experience in leading teams.

- Demonstrated critical thinking and problem solving skills

- Proven communication skills, both written and verbal, to both business and technology audiences

- Knowledge of data correlation techniques

- Knowledge of processes, procedures, and methods to research, analyze, and disseminate open source intelligence information

- Intelligence analysis experience using intelligence analysis tools

- Experience with SIEM tools and technologies, such as ArcSight, EnVision, OSSIM and/or similar tools

Nice to have Skills:--

- Industry certifications in cyber security, such as CISSP, GSEC, and/or Sec+

- Industry certifications in networking, such as CCNA, CWNA and/or Net+

- Foundational knowledge of multiple areas of cyber security operations, such as attack surface management, SOC operations, Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), threats (including APT, insider, etc.), vulnerabilities, and exploits; incident response, investigations and remediation.

The Apply Button will redirect you to website. Please apply there as well.