Job description 

Role Proficiency:

Manage the onboarding of new customers. Develop and create new operation processes. Lead SOC service for various customers including deep investigation and cyber security subject expertise.
 

Outcomes:

1. Manage a complete cyber security incident and provide deep investigation
2. Create and manage improvement process for customer services
3. Working on improving customer detection by adding relevant detection rules
4. Onboarding new customer to SOC service
5. Develop and update operation methodology
6. Be the point of contact for operational (technical) issues and platform/service improvement
7. Guide SIEM experts
8. Be the cyber security subject expert

Measures of Outcomes:

1. Successful incident management
2. Successful onboarding of customers to services
3. Successful implementation of improvement programs

Outputs Expected:

Continuous improvement of the services:

1. Monitoring capability
    
2. Investigation process
    
3. Operation process
    
4. Methodology
    
5. Incident management
    
6. Mitigation and automation action

Skill Examples:

1.  Presentation skill (Verbal) and soft skill (hands on verbal and writing)
2. Excellent analytics skill
3. Ability to lead activity on cross culture/ geo location team to success in task
4. Accountability
5. Ability to think out of the box to find solution
6. Project management skills
7. Proficient in programming languages such as C C# Python Perl Java PHP and Ruby on Rails.

Knowledge Examples:

Knowledge Examples

1. Experience in cyber security discipline
2. Excellent knowledge of cyber security defence methods (tools topology best practices)
3. Excellent knowledge on Mitre frameworks (or other common frameworks)
4. Practical experience with developing and implementation processes
5. Relevant certification in cyber security
6. Advance knowledge with SIEM solution
7. Experience with cloud (working secure monitoring)