Security Operations Center Manager

Ernst & Young

Muscat, Oman

Ref: NP946-825

Job description / Role

Employment: Full Time

EY is seeking an experienced Security Operations Center (SOC) Manager to join a unique and much sought after the global team and network of SOCs. The position will be awarded to a passionate and self-driven individual who wants to join an elite team to make a real difference in protecting some of the leading organizations from the active cyber threat landscape.

The SOC manager will be responsible (along with the EY Cyber executive committee) to bring vision, innovation and execution to EY SOC through a series of ongoing initiatives. They will be expected to present to senior client executives at the SOC and help promote leading edge services. Also, bring excellent collaboration skills to form a strong network of global SOCs and their respective management.

The SOC Manager will be responsible for the management of day-to-day, 24 hours round the clock and 7 days a week operations of the SOC. Responsibilities include to manage, mentor, and lead a team of SOC analysts providing cyber security monitoring services to various clients, responsible for continually improving customer experience, coach and develop the staff, achieve and exceed the quality metrics in a timely manner.

Responsibilities:

• SOC Operations
• Lead and manage SOC Team leaders and staff in the SOC
• Evaluate and monitor overall SOC effectiveness
• Oversee event and incident management activities and access provisioning
• Supervise and monitor incident response activities and preparedness for SOC staff; participate and contribute to enterprise security breach response activities
• Collaborate with the Cyber Security Leadership to develop and update Security Operations standards, procedures, guidelines, and leverage best practices
• Monitor various sources of breaking security news and lead the Security Operations Team’s response to new threats and vulnerabilities as appropriate. Including, but not limited to, developing new attack signatures, identifying new indicators of compromise, communicating updated methods and tactics to the Security Operations Team and drafting client communications
• Actively participate in the hiring of new team members, adheres to policies and procedures, and create motivational strategies to drive quality performance
• Implementation and maintenance of ISO 27001 and other operational certifications

Requirements

Pre-sales Support

• Generate new business opportunities by participating in the market facing activities, executive briefings and developing thought leadership materials
• Develop high quality technical and commercial proposals along with the proposal development team
• Coordinate with vendors and alliance partners to obtain solution pricing
• Support cyber executives and alliance partners in achieving SOC sales targets.
• Participate in RFPs / tender response.

Strategic

• Identify opportunities to grow and improve SOC services, providing detailed recommendations for service enhancements, introduce new services, and solution as appropriate
• Manage partner alliances
• Strong collaboration with EY senior executives, key stakeholders and other EY SOC Managers/executives to co-establish, promote and drive a Cyber SOC ecosystem
• Develop competitive delivery and commercial models
• P&L Ownership and Management
• Oversee and manage SOC P&L to achieve targets agreed with management
• Maintain cost-effective resource and capital utilization

To qualify, candidates must have:

• Excellent teamwork capability, passion and drive to succeed and combat Cyber threats
• Managerial capabilities and experience to motivate a diverse group of individuals, strong interpersonal skills to foster a team environment, and the ability to create and implement action plans
• Previous supervisory experience in leading a SOC monitoring/response team
• Excellent analytical and problem-solving skills
• Expert understanding of common cyber security attack vectors, threats, vulnerabilities, and countermeasures
• Experience performing security analysis utilizing open source, big data and SIEM technologies and Threat Intelligence
• Ability to build, lead, manage and motivate teams in a dynamic, mission-critical operations environment
• Expert understanding of computer networking, systems administration, and vulnerability management
• Manage customer relationships through resolving problems and following up on the status of projects
• Expert in Cyber Incident Response
• Awareness and knowledge of Big data analytics, dashboards, eGRC and behavioural analysis tools
• Awareness and knowledge Cyber OT and IoT issues
• Awareness and knowledge Attack & Penetration Testing / Ethical Hacking
• Awareness and knowledge Application Security Risk Assessment

Qualifications & Experience:

• Native Arabic speaker
• Bachelor Degree in related discipline and 10+ years of experience in a related field
• 5+ years of experience in leading Security Operations and controls strongly preferred
• 5 years of relevant technical and business experience required
• Leadership experience in managing cross-functional teams and influencing senior level management and key stakeholders
• Experience in managing a P&L
• Ability to be visionary, strategic, and tactical
• Knowledge of current and emerging security standards, privacy regulations and security requirements
• Ability to explain business principles of secure system designs in terms of business risk
• Strong networking and application knowledge
• Experience with main stream SIEM technologies such as Qradar, LogRhythm, Splunk
• Network monitoring technology platforms such as Fidelis XPS, RSA or others
• Endpoint protection tools, techniques and platforms such as CarbonBlack, Symantec, McAfee or others
• Internationally recognized technical certifications in relevant areas such as CISSP, CISM, CISA and product specific certifications
• Hands-on experience with TCP/IP, security concepts, WAN and LAN concepts, Routing Protocols, Firewall Security policies
• Hands-on experience with industry-leading security vendor platforms, including products such as Juniper security devices, ASA, Snort, Cisco IDS, Websense, NetForensics, etc
• Hands-on experience with industry-leading network management platforms
• Practical experience of customer service processes and solving issues
• Understanding of the principles of best practice security as embodied in ISO27001

About the Company

EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities.

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. Information about how EY collects and uses personal data and a description of the rights individuals have under data protection legislation are available on our site.

The MENA practice of EY has been operating in the region since 1923. For over 95 years, we have grown to over 7,500 people united across 21 offices and 16 countries, sharing the same values and an unwavering commitment to quality. As an organization, we continue to develop outstanding leaders who deliver exceptional services to our clients and who contribute to our communities. We are proud of our accomplishments over the years, reaffirming our position as the largest and most established professional services organization in the region

Get personalised updates on latest vacancies
Job Alerts by Email
  • Personalised updates on latest career opportunities
  • Insights on hiring and employment activity in your industry
  • Typically sent twice a month