Security Operations Center - Manager
Katowice Security Operations Center - Manager
Katowice
NR REF.: 1136339
Your new company
How does designing and innovating our detection and response capabilities sound?
Reporting directly to the CSO you will be responsible for building our SOC capability and driving innovation in our detection, alert management and response capabilities. You will have an opportunity to design, implement and build Security Operations Centre for global market leader in construction industry. After successful implementation you will lead a team of highly specialized, and qualified employees responsible for company’s overall cyber defense area.
Your new role
- Define and manage the global detection and response strategy for the Company
- Lead the evolution and implementation of our security incident and event management capabilities
- Lead and spearhead solutions related to the development of processes and implementation of technology to increase endpoint and network security
- Boost, build and innovate our security tooling and processes relating to detection and response activities
- Educate and empower those around you on security topics to increase understanding of vulnerabilities and how to detect and mitigate them.
- Lead responses to security incidents, problem solve and coordinate across relevant teams and identifying where process changes are needed to assure future mitigations.
- Collaborate with key stakeholders to identify opportunities to optimize monitoring and alerting capabilities.
- Utilize industry available threat intelligence solutions to guide appropriate preparations in response to industry threats.
- Drive automation and adoption of innovative tools and services.
- Create playbooks to support incident response efforts
What you'll need to succeed
- Bachelor’s degree in Computer Information Systems or a related discipline, or equivalent experience 10+ years in IT and Information Security roles, with 5+ years managing teams in a Security Operations Center - CISSP, GIAC, or similar Information Security certification
- Experienced working in a SOC or similar hands-on Cyber Security Operations environment.
- Experience implementing and optimizing SIEM and other SOC based/ EDR services
- Familiar with Threat Hunting principles, threat modelling and utilizing threat intel from external services.
- Understanding of cloud infrastructure eg. AWS, Azure, Google Cloud, etc.
- Detailed knowledge of security technology such as WAFs, AV, encryption
- Understanding of cryptography, authentication, authorization
- Knowledge of DLP, IDS, IPS tooling option.
- Ability to work with new IT Security systems and solutions
- Advanced IT (operating systems, networking) and IT Security knowledge (system and network security) incl. IT security tools - A positive, collaborative and pragmatic attitude. Calm in the storm.
- Robust management skillset and comfortable managing multiple stakeholders.
- Interested in being up to date to IT Security topics and new technologies
- Knowledge of production companies structure with support distributed across multiple locations around the globe
- Fluent in English (German is a plus)
- ITIL Knowledge on Foundation Level
- Some travel (Germany), expected ca. 20-30% yearly
- Good communication / interpersonal skills
- Technology related security certifications
- Willingness to learn and develop in different areas of technologies related with the position and current or future business needs
What you'll get in return
- Work in a stable, international company
- Home office, elastic worktime
- Trainings and benefits package: private medical care, Multisport
- Parking space.
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.
Katowice
NR REF.: 1136339
Your new company
How does designing and innovating our detection and response capabilities sound?
Reporting directly to the CSO you will be responsible for building our SOC capability and driving innovation in our detection, alert management and response capabilities. You will have an opportunity to design, implement and build Security Operations Centre for global market leader in construction industry. After successful implementation you will lead a team of highly specialized, and qualified employees responsible for company’s overall cyber defense area.
Your new role
- Define and manage the global detection and response strategy for the Company
- Lead the evolution and implementation of our security incident and event management capabilities
- Lead and spearhead solutions related to the development of processes and implementation of technology to increase endpoint and network security
- Boost, build and innovate our security tooling and processes relating to detection and response activities
- Educate and empower those around you on security topics to increase understanding of vulnerabilities and how to detect and mitigate them.
- Lead responses to security incidents, problem solve and coordinate across relevant teams and identifying where process changes are needed to assure future mitigations.
- Collaborate with key stakeholders to identify opportunities to optimize monitoring and alerting capabilities.
- Utilize industry available threat intelligence solutions to guide appropriate preparations in response to industry threats.
- Drive automation and adoption of innovative tools and services.
- Create playbooks to support incident response efforts
What you'll need to succeed
- Bachelor’s degree in Computer Information Systems or a related discipline, or equivalent experience 10+ years in IT and Information Security roles, with 5+ years managing teams in a Security Operations Center - CISSP, GIAC, or similar Information Security certification
- Experienced working in a SOC or similar hands-on Cyber Security Operations environment.
- Experience implementing and optimizing SIEM and other SOC based/ EDR services
- Familiar with Threat Hunting principles, threat modelling and utilizing threat intel from external services.
- Understanding of cloud infrastructure eg. AWS, Azure, Google Cloud, etc.
- Detailed knowledge of security technology such as WAFs, AV, encryption
- Understanding of cryptography, authentication, authorization
- Knowledge of DLP, IDS, IPS tooling option.
- Ability to work with new IT Security systems and solutions
- Advanced IT (operating systems, networking) and IT Security knowledge (system and network security) incl. IT security tools - A positive, collaborative and pragmatic attitude. Calm in the storm.
- Robust management skillset and comfortable managing multiple stakeholders.
- Interested in being up to date to IT Security topics and new technologies
- Knowledge of production companies structure with support distributed across multiple locations around the globe
- Fluent in English (German is a plus)
- ITIL Knowledge on Foundation Level
- Some travel (Germany), expected ca. 20-30% yearly
- Good communication / interpersonal skills
- Technology related security certifications
- Willingness to learn and develop in different areas of technologies related with the position and current or future business needs
What you'll get in return
- Work in a stable, international company
- Home office, elastic worktime
- Trainings and benefits package: private medical care, Multisport
- Parking space.
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.
Prosimy o aplikowanie poprzez przycisk znajdujący się po prawej stronie ogłoszenia.
