L3 SOC Manager

Role Proficiency:

Effectively lead a medium size unit / shift / sub-team / customer engagement within a larger Shared Services team; delivering cyber security monitoring and triage activities for our global customers. Assist SOC Manager (B3/C1) in larger responsibilities. This role is in the management stream and envisages growth in management rather than the technology space.

Outcomes:

1. Effectively Lead a medium size SOC team (unit / shift / sub-team / medium size customer engagement)


2. Responsible for delivery of SOC services by the team as per SLA. Responsible for performance of activities by the team defined by the manager from a contractual and regulatory perspective.


3. Responsible for the quality of deliverables of the team


4. Ensure a well administered team / engagement.


5. Responsible for customer communication and stakeholder management.


6. Assist SOC Manager in larger responsibilities for example managing P & Ls.


7. Ensure team adherence to the Information Security policies as defined by the company and customer.

Measures of Outcomes:

1. Team adherence to SLA as agreed with the customer.


2. Innovation Case Studies and value delivered to customer / Cyberproof.


3. Productivity (Number of s and incidents addressed)


4. Quality - Percent of tickets that meet quality norms


5. Adherence to process Nil NC during audits


6. Evidence of skill development including training and certification etc.

Outputs Expected:

Team Administration and Management:

1. Ensure that a balanced team is available to provide defined services


2. Responsible for administrative aspects like shift roster and attendance
   on-call
   related allowances etc.
   
   


3. Assist SOC Manager with larger responsibilities.

Delivery Management:

1. Supervision of the shift period / team such that cyber security s from the SIEM and multiple sources are dealt with
   by the shift / team
   within SLAs
   
   


2. For the responsible team unit; ensuring quality standards are maintained.


3. Define and implement new processes or changes to existing processes.


4. Communicate and escalate per defined process.

Reporting:

1. Generation of required reports
   management information and analytics.
   

Team Competence Management:

1. Mentor junior team members wherever possible


2. Identify training needs for team. Define and implement Training plans.

Continuous Improvement:

1. Ensure activities like quality checks
   reviews
   etc are performed to ensure the team is performing with required standards.
   
   


2. Set benchmarks for a high performance organisation


3. Make that audits go smoothly; responsible for closure of audit findings and performance improvement plans


4. Ensure continuous improvement in the team in areas of delivery quality
   operational efficiency
   innovation and optimization
   etc.
   
   
   


5. Ensure Continuous learning

Skill Examples:

1. High proficiency in people and stake-holder management.


2. Ability to manage and lead medium sized teams. Ability to inspire.


3. Ability to interface with customers and specialist teams on these topics.


4. High proficiency in operations / project management. Certifications / Training in relevant frameworks. Understanding of relevant frameworks in cyber security SOC IT Infrastructure etc.


5. Excellent oral and written communication skills.


6. Possess unimpeachable personal and professional integrity. Individuals will be required to submit to a background check

Knowledge Examples:

• 7+ Years overall experience in SOC / IT Infrastructure. A minimum of 4 years experience delivering SOC services for global organizations.
  
  
  
  1. University Degree in Cyber Security (no back papers) / Bachelor s in Engineering or Science with training in cyber security
  
  
  2. Sound understanding of relevant tools related to SOC like SIEM EDR Ticket Management etc.
  
  
  3. Exposure to ISMS Quality and BCP processes and frameworks.
  
  
  4. Highly Proficient in Cybersecurity Incident Management process. Sound understanding of cyber security s and incidents. Intermediate understanding of enterprise IT Infrastructure including Networks Firewalls OS Databases Web Applications etc.
  
  
  5. Experience in ensuring adherence to ISMS QMS and principles guidelines and relevant frameworks (e.g. ISO27001)
  
  
  6. Desirable Training / Certification in relevant processes / frameworks related to operations / project / cyber security etc.