SOC Lead

You will be responsible for monitoring, analyzing, and detecting security events and incidents. Your role will involve managing, tuning, and optimizing the SIEM tool (LogRhythm) to meet business requirements. You will also provide recommendations to clients" security teams to enhance security controls such as IDS/IPS, endpoint security, vulnerability management, and data loss prevention (DLP). Collaboration with the SOC manager will be essential for creating new operational guidelines, processes, and procedures. In the 24X7 SOC Environment, you will manage shifts and the team, serving as the first point of escalation for the SOC team and assigning work tasks to team members. Handling escalated security incidents and conducting deep dive analysis, threat hunting, and malware analysis will be part of your responsibilities. Continuous improvement in security operations will be a key focus, along with ensuring that service level agreements are met and processes are followed. You will guide and mentor L1 and L2 analysts in investigating and mitigating security threats and incidents. The ideal candidate should have more than 5 years of experience in the information security field and be well-versed in security operations, intrusion detection, and incident handling. Experience in security monitoring with SIEM technologies such as LogRhythm and Splunk is required. Strong teamwork, adaptability to a dynamic environment, and a customer service-oriented approach are essential qualities. Additionally, proficiency in communication, writing, interpersonal skills, and leadership skills is necessary. You will be expected to have knowledge of current and emerging technologies and processes used within a SOC to enhance efficiency and effectiveness. Proficiency in case management and ticketing systems is desired. Experience with various SOC tools like LogRhythm, Sourcefire IPS/IDS, Cisco AMP, Digital Guardian, Cisco Ironport, Cloudflare, and System Center Endpoint Protection is advantageous. Good understanding of network security, TCP/IP, Linux, Windows, etc., is also beneficial. Join EthicalHat Cyber Security Pvt. Ltd. to lead and mentor staff, provide growth opportunities through delegation, training, and project assignments, and contribute to the enhancement of security operations.,