Manager - Security Operations Center

Manager - Security Operations Center

Manager - Security Operations Center

Mar 19, 2020

AXCESS CONSULTANCY SERVICES

Noida

 

Job Description

 Job Description 

Please make sure candidate should qualify checklist written below:

Ques: How long you have been working in SOC Security Operations center

Ques: How would you optimize the cost of SOC

Ques: Familiarity with ITIL and Agile framework / methodologies

Ques: Were you involved in setting up of any SOC

Ques: What devices you will need and how will you build a rule that detects and alters that a system is compromised and data is being hacked through network.

Ques: What should be an incident management process Explain it using a case of HRMS application seems compromised.

Ques: is Vulnerability Management Product integrated to WAF

Ques: How would you measure manpower efficiency

Ques: Do you have the skillset to integrate servers/applications/devices to the SOC

Ques: What is Chain of Custody Why it is important How do you take logs of memory / running processes of compromised server

Ques: Expertise with industry standard frameworks like NIST, ISO 27001, PCI - DSS

Ques: What Policies / Procedures would you set up as a SOC manager to run it efficiently

Ques: Do you know how to build business specific use cases

Ques: Expertise in which SIEM Solution

Ques: What should be the hybrid SOC KPIs for CEO

Ques: is WAF Product integrated to SIEM

Ques: Why do you need to interact with internal departments as a SOC manager

Ques: What is the difference between generic Vs Industry Specific Vs Business Specific use cases

Ques: Can you create custom connectors

CTC 7.00 - 10.00 Lacs

No of Opening 1 ,

Experience 9.0 - 14.0 Year(s)

Working days 5

Qualification B Sc.,B Tech.,/BE,BCA,Diploma

Location Noida

JOB CONTEXT AND KEY ACCOUNTABILITIES:

Set up and manage Security Operations Centre s Technology, People, Process and Governance.

Ensure that all servers, key applications, networking devices, security devices are integrated to SOC

Ensure that all attacks on JFL information system are detected and managed.

Encourage relationship with SOC team and internal departments to ensure monitoring, smooth incident response and compliance.

Lead and mange security incidents from identification through remediation.

Ensure that Generic, QSR/Retail specific and JFL customized use cases are created, implemented and managed

Ensure that logs from devices are collected/stored and persevered as per forensic investigation requirements.

Build SOC governance and share timely reports to Departments /CISO /CTO /CFO

Manage SOC team, efforts, mapping of team vs efforts, monitor security events, manage incidents effectively with available resources and provide first and final escalation analysis.

Professional Communication, including executive level, and documentation of metrics, SLAs and procedures.

. QUALIFICATIONS, EXPERIENCE & SKILLS :

Experience building and maintaining a high - performance team of analysts

Expertise with industry standard frameworks like NIST, ISO 27001, PCI - DSS

Familiarity with ITIL and Agile framework / methodologies

Experience maintaining SOC metrics and SLAs.

Strong knowledge of incident management, problem management and change management best practices

A high - level understanding of multi - tiered applications, load balancing and firewalls

Understanding of private, public, and hybrid cloud operations

Knowledge of network security, intrusion prevention system, System information and event

management (SIEM), integrating servers/ devices/ application with SIEM, co - relation rules creation, host based investigate.

Knowledge of WAF, FIM and Vulnerability assessments

Knowledge of forensics investigation - network forensics, host - based forensics, chain of custody evidence, log reviews, basic malware assessments, threat intelligence

10+ years of Information Security / Cybersecurity experience

4+ years working in a security operations center

Certification Required

Industry certifications such as CEH/CISSP, CISA/CISM

Technology vendor certifications (Cisco/CheckPoint/RSA, etc.)

Industry standard frameworks (ITIL/ISO/NIST/PCI - DSS)

 

Recruiter details

  • Company Name: AXCESS CONSULTANCY SERVICES
  • Company Description:
    AXCESS CONSULTANCY SERVICES