SOC Lead

Introduction
A sneak peak into this role:
In this role you’ll work in our IBM Client Innovation Center (CIC) where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. These centers offer our clients locally-based skills and technical expertise to drive innovation and adoption of new technology.

Your Role and Responsibilities
Why you’ll love your job:
You will join IBM Security Services which is a division of IBM Consulting responsible for delivering security services to its large global customers alongside major digital transformation projects in the application and cloud domains.
The SOC Lead will be in charge of managing the SOC’s day-to-day activities developing services and know-how to remain at the state of the art and satisfy leading customers. To this end he/she will support employees on the technical issues of incident detection and response in compliance with the procedures agreed with the client and IBM international standards.

Your responsibilities:

• Manage and train a team of security analysts responsible for monitoring security systems for potential cybersecurity incidents
• Manage 24×7 detection analysis and triage operations
• Ensure development of standard operating procedures and operations tempo
• Validate that security analysts follow established procedures and follow up on anomalous activity when identified
• Identify monitoring and detection gaps and work with the SOC Detections Analyst team to expand log collection detection and analytic capabilities to address
• Improve data filtering correlation triage and analysis automation techniques
• Adjust operations procedures and capabilities as necessary based on active collection and analysis of relevant metrics
• Develop a metrics program to measure effectiveness and ways to improve upon processes
• Build strong relationships with operations teams to facilitate rapid response actions
• Establish practices to maximize quality staff retention and growth
• Work closely with compliance teams to provide required evidence for various applicable controls
• Oversee and set the SOC Analyst team’s training program
• Organize and prioritize various SOC functions based on business requirements

Required Technical and Professional Expertise

• Security Operations Center management experience
• Experience managing remote employees
• Strong understanding of security monitoring detection and analysis methodologies and technologies including NIDS EDR WAF FIM network firewall and SIEM
• Possess a deep understanding of operations system and network security
• Ability to explain complex security issues to analysts engineers managers and executives
• Excellent written and spoken communication
• Possess solid critical thinking analytical and problem-solving skills
• A number of years of related work experience with a Bachelor’s degree; or 4 years with Master’s degree
• B.Sc. in Computer Science Computer Engineering or equivalent experience

Preferred Technical and Professional Expertise
Experience with the following are bonus points but not necessary you can learn them at IBM:

• Hands on security analyst experience with data filtering correlation triage and analysis automation techniques
• Experience building a SOC
• Expertise using Linux Splunk and Tanium
• Experience turning data into metrics
• Work experience at a cloud service provider and intimate knowledge of the complexities of securing a cloud environment preferred
• Knowledge of Oracle Cloud and related security technologies is a plus
• Recognized industry certification and/or continuing education programs are a major plus including CISSP OSCP GCIH GCIA SSCP GMON

In return we provide you with:

• Dynamic diverse inclusive and supporting environment
• Professional skill-growth opportunities reskilling possibility
• Access to worldwide leading technologies
• Agile office area
• Hybrid working model
• Competitive compensation and benefits package including healthcare

And don’t worry if you don’t tick every single box in the requirements. We’re always looking to hire for potential and the right mindset – so we’d still love to hear back from you. Our awards why you might be a proud IBMer:

• Randstad: Most Attractive SSC Employer in 2020
• Family Friendly Workplace Award (2018 2019 2020)
• Responsible Employer recognition (2018-2021)
• Most Attractive Employer (3rd) (2020)
• Disability-Friendly Workplace Recognition (2010-2020)
• Disability-Friendly Workplace Best Employee & Role Model Employee Award (2021)
• Stevie Awards for our Teams & Professionals (2018 2019 2021)
• Hungarian Outsourcing Association CSR Award (2021)

Do you know someone who will be good for this position? Share with them.