Manages the SOC team to maintain and deliver appropriate services.
Oversee the delivery of all SOC services in the service portfolio such as Real-Time Monitoring, Incident Management Threat Hunting, etc,
Develops and facilitate cross coordination of implementation plans for new projects within the SOC.
Develop SOC service metrics; implements and monitors controls to maintain appropriate service levels.
Provides thought leadership on SOC management and continue to catch up with industry trends.
Understand and work together with L3 engineers for escalated P1 Incident Investigation activities, prioritized threat hunt and intelligences, and business critical SOC services.
Maintains and administers personnel activities for direct reports, including recruitment, assignments, training, performance evaluations, and reviews.
Maintains knowledge of relevant regulations, compliance requirements and policies that may directly or indirectly impact the SOC and its services
Skills/Experience:
Hands-on security experience: Proven experience working in a SOC environment, often starting as a security analyst or incident responder.
Leadership experience: Demonstrated experience leading and mentoring a team of security professionals.
SOC tools: In-depth knowledge of SIEM, SOAR, Endpoint Detection and Response (EDR), and Threat Intelligence platforms.
Cisco products: Familiarity with Cisco’s security product portfolio and network management.
Cybersecurity fundamentals: Strong understanding of security principles, incident response processes, vulnerability management, and threat intelligence.