Cyber Detection & Response - Front Line Manager

As a SOC Front Line Manager, you will be required to lead and act as a senior support for the SOC analysts and work closely with other leads to maintain the operations. You will be expected to assist the analysts in complex investigations and also to provide regular training to them. Part of your role will include administrative and people management tasks, but also deep knowledge in the field, proactivity, and aptitude to manage relationships in a large, complex technical ecosystem, with support from leadership.  

What you’ll do

• Work closely with the other SOC shift leads to help oversee the day-to-day operations while assisting with the prioritization and investigation of cases when needed.
• Provide regular training and mentoring to the level 1 and level 2 SOC analysts. 
• Perform regular QA of the analyst's investigations.
• Create, improve, and document SOC processes and procedures, while seeking SOC efficiency.
• Will lead a small team of analysts and attend basic management tasks.
• Work from Monday to Friday from 12am to 6 am 

What experience you need

• Bachelor’s degree in a technical field or equivalent job experience.
• 2+ years of working experience in a lead role
• 2+ years of relevant operational work experience in an intermediate or Senior Security Analyst role or similar.
• 3+ years of experience in networking.
• 3+ years of experience with Linux/Windows OS.
• 3+ years experience working in the detection, analysis, containment, mitigation, and recovery of Cyber Security Incidents.
• English proficiency B2+ or above (Belt)

What could set you apart

• Relevant security certifications, such as CompTIA Security+, CompTIA Network+, CompTIA CySA, or others.
• INE Certified Cloud Associate (ICCA)
• Experience working with tickets and ticket management systems.
• Great storytelling and communication skills.
• Basic coding experience or familiarity with different programming languages.
• Experience performing malware analysis.
• Understanding of the MITRE ATT&CK Framework.
• Familiarity with conducting Host and network log analysis.
• Familiarity with SIEM log analysis and obtaining logs through applicable query languages (Splunk, McAfee, Q-Radar, Sentinel, Etc.)
• Knowledge of enterprise detection technologies(AV, EDR, IDS/IPS, Firewall, etc.).
• Strong analytical, critical thinking, and problem-solving.
• Ability to work under stress, tight deadlines, and effectively in teams.
• Passionate desire for continuous learning of information security and physical security practices.
• Leadership skills and teamwork.
   

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time