Engineer (Security Operation)
Salary undisclosed
Checking job availability...
Original
Simplified
What The Role Is
You review and advise on the designs of the Security Operation Centre (SOC)'s infrastructure, determining the placement and coverage of intrusion detections, endpoint hardening agents within the host and network environment.
What You Will Be Working On
You review and advise on the designs of the Security Operation Centre (SOC)'s infrastructure, determining the placement and coverage of intrusion detections, endpoint hardening agents within the host and network environment.
What You Will Be Working On
- Create and manage customised security event detection rules
- Oversee daily SOC operations involving threat detection and incident management
- Supervise SOC training and development activities
- Establish and maintain operational procedures, guidelines and knowledge management
- Interact with vendors and system managers for system integration and enhancement
- Rotate with Head SOC for 24/7 monitoring duties
- Balancing leadership and technical skills
- Managing resources, including staffing needs and integration of complex SOC tools
- Rapidly responding to cyber incidents while maintaining composure
- Education in Cybersecurity, Computer Engineering, Information Systems or a related field
- At least 5 to 8 years of working experience in cybersecurity roles, minimum 2 years in a senior or supervisory role within a SOC or Cyber Emergency Response Team
- Technological knowledge in threat detection, incident response and security tool management
- Proficiency in SOC tools (Security Information and Event Management, Intrusion Detection System, Intrusion Prevention System, Endpoint Detection and Response)
- Certification in GIAC Security Operations Certified (GSOC), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP) and/or Certified Information System Manager (CISM) is preferred
- Familiarity in evaluating cybersecurity tools
- Vendor collaboration and management skills
What The Role Is
You review and advise on the designs of the Security Operation Centre (SOC)'s infrastructure, determining the placement and coverage of intrusion detections, endpoint hardening agents within the host and network environment.
What You Will Be Working On
You review and advise on the designs of the Security Operation Centre (SOC)'s infrastructure, determining the placement and coverage of intrusion detections, endpoint hardening agents within the host and network environment.
What You Will Be Working On
- Create and manage customised security event detection rules
- Oversee daily SOC operations involving threat detection and incident management
- Supervise SOC training and development activities
- Establish and maintain operational procedures, guidelines and knowledge management
- Interact with vendors and system managers for system integration and enhancement
- Rotate with Head SOC for 24/7 monitoring duties
- Balancing leadership and technical skills
- Managing resources, including staffing needs and integration of complex SOC tools
- Rapidly responding to cyber incidents while maintaining composure
- Education in Cybersecurity, Computer Engineering, Information Systems or a related field
- At least 5 to 8 years of working experience in cybersecurity roles, minimum 2 years in a senior or supervisory role within a SOC or Cyber Emergency Response Team
- Technological knowledge in threat detection, incident response and security tool management
- Proficiency in SOC tools (Security Information and Event Management, Intrusion Detection System, Intrusion Prevention System, Endpoint Detection and Response)
- Certification in GIAC Security Operations Certified (GSOC), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP) and/or Certified Information System Manager (CISM) is preferred
- Familiarity in evaluating cybersecurity tools
- Vendor collaboration and management skills