QUALIFICATIONS AND JOB DESCRIPTION
We are looking for a team member : “Security Operation Center (SOC) Team Lead” who has extensive experience previously working as a Tier 2 and/or Tier 3 SOC Support Engineer and who is ready to take on their career to the next level.
As a SOC Team Lead, you will provide oversight for the Security Operations Center, providing real-time, continuous cybersecurity monitoring and triage, uninterrupted event detection, incident analysis, coordination and response, situational awareness and cybersecurity countermeasure implementation capabilities for maintaining a secure cybersecurity.
Responsibilities:
- Maintaining 7x24 comprehensive situational awareness of customer cyber-threat landscape as it relates to security monitoring.
- Leading a team of 15 SOC support engineers with various skill sets that provides operations, maintenance and service support of security operations across the clients.
- Reporting directly to the Technical Operations & Delivery Services Director, delivering expert advice to him regarding the security status of the client environment.
- Preparing reports such as cyber-threat intelligence situation reports regarding observed activity from security tools.
- Developing plans and procedures in order to reach SOC team targets.
- Conducting trend analysis.
- Effectively communicating with all clients.
- Collaborating effectively across multiple teams.
- Creating a team environment and improving/sustaining employee motivation.
- Taking initiative to complete the mission with excellence and minimum supervision.
- Multitasking and maintaining a professional approach even under the pressure.
- Tracking, troubleshooting and reporting incidents.
Qualifications:
- At least 3 years of SOC experience in cyber security sector, preferably in a global environment.
- At least 2 year of team management experience.
- Bachelor degree in Computer Science, Computer Information Systems, Mathematics, Engineering or related fields.
- Having “hands-on approach” for clients projects.
- Knowledge of system & network processes (Windows Linux, etc).
- Experience of SIEM products is preferable.
- Knowledge of Firewall, Proxy technologies.
- Knowledge of protocol analysis (Wireshark, Gigastor, Netwitness, etc) and protocol & services (FTP, http, SSH, SMB, WMI, etc)
- Having various of certifications of CSIS, CEH, CSTA, CSTP, GCFE, CISSP, GCIH, GPEN, etc.
- Career planning in Cyber Security environment.
- Very good command of English is desired.
- Working with multiple teams.
- Having customer-oriented, natural leader, fast learner, proactive and solution oriented profile.
- Living in Asian side of Istanbul is preferable.