Head of Security Operations Center (SOC)
Location: Manchester (Remote)
Department: Information Security
Reports To: Chief Information Security Officer (CISO) or Director of Cybersecurity
Job Overview:
We seek an experienced and strategic leader to serve as the Head of our Security Operations Center (SOC). In this role, you will be responsible for the SOC team’s overall management, operations, and direction. You will oversee the monitoring, detection, analysis, and response to cybersecurity incidents and threats, ensuring that our organization’s information systems and data remain secure. Your leadership will be instrumental in building a world-class SOC that can proactively identify and mitigate security risks.
Key Responsibilities:
– Leadership & Strategy:
– Develop and implement the overall strategy for the SOC, aligning it with the organization’s broader cybersecurity and business objectives.
– Lead, mentor, and manage the SOC team, fostering a culture of excellence, continuous improvement, and collaboration.
– Define and refine SOC processes, playbooks, and workflows to ensure operational efficiency and effectiveness.
– Operational Management:
– Oversee the 24/7 operations of the SOC, ensuring that security events and incidents are monitored, detected, and responded to promptly.
– Ensure that the SOC has the necessary tools, technologies, and resources to effectively monitor and protect the organization’s assets.
– Maintain a high level of situational awareness regarding current and emerging threats, vulnerabilities, and attack vectors.
– Incident Response & Management:
– Lead the response to significant security incidents, working closely with other teams and stakeholders to contain, mitigate, and recover from security breaches.
– Coordinate post-incident analysis and reporting, ensuring that lessons learned are documented and applied to improve SOC processes.
– Establish and maintain strong incident communication protocols, ensuring that relevant stakeholders are informed during and after an incident.
– Collaboration & Communication:
– Collaborate with other cybersecurity, IT, and business teams to ensure a holistic approach to security across the organization.
– Act as a key liaison between the SOC and senior leadership, providing regular updates on the state of security, ongoing initiatives, and incident response efforts.
– Represent the SOC in meetings with external partners, auditors, and regulatory bodies as needed.
– Continuous Improvement:
– Stay up-to-date with the latest cybersecurity trends, technologies, and best practices.
– Drive the continuous improvement of SOC capabilities, including the implementation of new tools, technologies, and methodologies.
– Oversee the development and execution of training programs to enhance the skills and knowledge of the SOC team.
– Budget & Resource Management:
– Manage the SOC budget, ensuring that resources are allocated effectively to support SOC operations and initiatives.
– Make recommendations for investments in new tools, technologies, and personnel to enhance the SOC’s capabilities.
Qualifications:
– Education:
– Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field (Master’s degree preferred).
– Experience:
– 5+ years of experience in cybersecurity, with at least 3 years in a leadership role within a SOC or similar environment.
– Proven experience in incident response, threat intelligence, and security operations.
– Demonstrated success in building, leading, and managing high-performing teams.
– Skills:
– Strong leadership and management skills, with the ability to inspire and motivate a team.
– Deep understanding of security monitoring, detection, and response technologies and methodologies.
– Excellent communication and presentation skills, with the ability to convey complex security issues to non-technical stakeholders.
– Strategic thinking and problem-solving abilities, with a focus on proactive risk management.
– Certifications (Preferred):
– Certified Information Systems Security Professional (CISSP)
– Certified Information Security Manager (CISM)
– GIAC Security Operations Certified (GSOC)
– Certified Incident Handler (GCIH)
Additional Information:
– Work Environment:
– This role may require availability outside of standard business hours, including evenings and weekends, to respond to critical security incidents.
– The position may involve occasional travel to other company locations or conferences.
– Benefits:
– Competitive salary and executive benefits package.
– Opportunities for professional development, including certifications and training.
– A dynamic and collaborative work environment with opportunities to shape the future of the organization’s cybersecurity strategy.
#J-18808-Ljbffr