Lead Consultant – SOC

Job Description:
  • The role of the SOC Lead is to lead the security operation team as they deliver managed security services to customers through a broad suite of information security infrastructure, work with other Centelon operations teams to ensure Centelon policies are followed, constantly work on improving the security of Centelon and its customers, and to coordinate investigation and reporting of security incidents.
  • The SOC Lead will also have leadership, management and accountability responsibilities for technical engineers and analysts.

Roles and Responsibilities:

o   Leadership, management, and accountability for members of the security operations team

o   Oversee the transition of customer services from security delivery engineers to Security operations engineers.

o   Manage security responsibilities, including firewalls, proxy systems, logging, and other security devices.

o   Deliver excellent customer service through incident management and regular customer update meetings.

o   Create and review reports on security events and monitoring.

o   Develop and maintain security policies.

o   Raise awareness of security policies and develop corresponding procedures.

o   Provide security expertise to the company and to our clients.

o   Assist in the enforcement and monitoring of Compliance regulations.

o   Investigate and respond to security violations.

o   Design and conduct training for corporate security education and awareness programs

o   Define security requirements and review systems to determine if they have been designed to comply with established security standards. Develop new standards as necessary.

o   Establish and manage relations with vendors and related equipment suppliers.

o   Bachelor’s degree and 8 years of equivalent experience with focus in Information Security

Required Skills/Experience

o   Ability to lead and manage a team of security engineers and analysts.

o   5+ years of experience as a Senior Security Engineer.

o   Experience building, maintaining, and operating SIEM technologies. Good to have Sentinel, Splunk.

o   Working knowledge of web application firewalls, load balancers and proxies.

o   Demonstrated experience in computer security combined with risk analysis, audit, and compliance objectives.

o   Experienced with Web Vulnerability and Application penetration testing.

o   Experienced with customer technology assessment and security risk analysis.

Recommended Skills/Good to Have

o   Experience supervising technical resources and direct interaction with customers.

o   Good to have any one of CISSP or GCIH or CEH certification.

o   Familiarity with Information Security requirements of Compliance audits

o   Experience with Splunk, Elasticsearch, and Kubernetes

o   Python scripting experience

o   Experience working with information security practices, networks, software, and hardware.

o   Expert knowledge of TCP/IP, common protocols, and standards

o   Experience with DLP and IPS/IDS systems

o   Experience with security scanning tools