:
This position requires strong leadership, technical knowledge and prior management / team lead experience in a SOC using a wide variety of security tools for monitoring a large-scale enterprise environment.
This role requires a highly motivated manager who possesses a strong leadership background and the ability to manage a diverse team of Security Analysts and interact with other teams regularly. This individual must be able to engage as required (including holidays and weekends) to assemble his / her team to act as a tactical team at time of major incident.
This role requires the manager to provide appropriate updates to his/her management regarding security event handling, trends, analysis, incident response resolutions and lessons learned. In order to be considered as a successful candidate this person must be able to demonstrate the proper knowledge and leadership skills to support the role.
- Experience with the selection, implementation, and management of enterprise security technologies, including SIEM, anti-virus, EDR, DLP, IDS/ IPS, vulnerability scanners, configuration management, and encryption
- Oversee implementation of new technologies within SOC and lead automation of monitoring administrative tools
- Experience with leading the development, implementation, and management of processes that ensure security countermeasures and monitoring are effective and sustained on all applicable systems.
- Experience with leading the development, implementation, and management of incident response plans and response activities.
- Work closely with Security Leadership to identify implement process changes, improvements and efficiencies and ensure solid security practices.
- Candidate must be able to work quickly and accurately with minimal supervision.
- Lead the team by providing direction and guidance to team members in handling issues
- Candidate must be able to engage at any time to respond to an incident.
:
- Bachelor’s degree or equivalent program in Computer Science, Computer Engineering, Electrical Engineering, Network Security, Information Security, Information Technology, or Mathematics (or equivalent work experience).
- 10+ years of experience of network/security architecture or operations experience.
- Certifications: CISSP, CISM, GCIA, GWAPT, GCIH, GSEC, OSCP, OSCE, OSCP, or similar certification preferable
- Security Operations Center experience required
- Experience with threat hunting and incident investigation
- Familiar with offensive tools, tactics, and techniques
- Experience with Firewalls, Intrusion Detection/Prevention Systems, custom signature development skills.
- Knowledge of various Operating Systems (Windows, Unix, Mac, etc)
- Good understanding of computer networks and OSI model.
- Experience working with log management, security monitoring, vulnerability management and security incident/event management tools
- Proven leadership, communication, issue resolution and performance management skills
- Candidate should have strong communication skills and exhibit a professional demeanor.
- Ability and willingness to think outside of the box to find creative and innovative solutions to reduce costs with a minimal impact on reliability.
- Excellent project management skills, ability to work in a fast-paced and hectic work environment, ability to prioritize tasks effectively; and an ability to work seamlessly across organizational boundaries.
- Must be flexible in outlook and have positive attitude under pressure / stress.
- Excellent presentation skills and ability to present to senior management.
- Excellent planning/time management skills.
- Excellent client-facing skills.
- Very good understanding of the compromises between reliability, efficiency and cost.
- Candidate should possess the following soft skills: Management, Leadership, Communications, Professionalism, Creativity, and Drive.
Education:
- Bachelor’s degree/University degree or equivalent experience
- Master’s degree preferred
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
About Citi
Additional information may be found at | Twitter: | YouTube: | Blog: | Facebook: | LinkedIn: .
Information Security
Time Type:
Full timeView the " " poster. View the .
View the .
View the