Requisition Number: 74890
Be a leader in the expansion and growth of the SOC
Supervise and manage the Security Operations Center in tandem to clients’ mission and goals.
Mentor and guide Analysts and Engineers and perform knowledge transfer to other teams as required
Ensure accountability and punctuality of security analysts assigned to shifts, and shift continuity during callouts and emergencies
Determine staffing requirements: guides recruiting, hiring, training, development, and retention of highly qualified team members
Provide direction for team & vendor management, overall use of resources and initiation of corrective action where required for Security Operations Center.
Ensure that Standard Operating Procedures are being created and followed by the team
Service Delivery:
Responsible for driving execution of daily, weekly, and monthly metrics for statistical threats and KPIs
Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events
Ensure incident identification, assessment, reporting, communication, mitigation, and monitoring are functional
Ensure compliance to agreements, process adherence, and process improvement to achieve operational objectives
Provide agency with knowledge and guidance in following security frameworks (NIST SP-800, ISO 27000, etc)
Technical Delivery:
Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team
Assist with threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
Assist with security analysis, administration and remediation procedures, workflows and tasks
Service Development:
Document and update processes, workflows, and technical guides
Identifies opportunities to improve security monitoring and operational tasks
Create and evolve SLAs, reports, dashboards, metrics for SOC operations
Evaluate existing SIEM rules, filters, events and use cases and adapt to meet the business requirements
Revise and develop processes to strengthen the current Security Operations Framework
Assist in implementation of new SOC tools and applications and processes
Self-Development:
Maintain awareness of trends in security regulatory, technology, and operational requirements
Build and maintain relationships with stakeholders.
Required Skills/Qualifications
4-year college degree in Information Technology, Computer Science, Information Systems, Business or related field and 2-3 years’ experience, or 5 years’ experience in lieu of a college degree.
2 years (or more) of experience as an operations/technical lead on similar projects (operations centers considered a plus)
Experience in the field of Security Operations and Security Incident Handling.
In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, threat management, and incident management.
Experience demonstrating strong analytical, troubleshooting and problem-solving skills for investigating and handling security incidents.
Hands-on experience in a SOC.
Experience supporting 24x7 operations
Knowledgeable of Windows and UNIX/LINIX environments, Networking protocols, and Cloud technologies.
Excellent communication skills, both written and oral
Certifications in Information System Security (i.e. CEH, CISSP, CompTIA CySA+, GIAC certifications, etc).
Experience in network and cyber security design, engineering and operations
Experience with NIST SP 800 series or ISO 27000 series documents for information security management and risk assessment
The position described above provides a summary of some the job duties required and what it would be like to work at Insight. For a comprehensive list of physical demands and work environment for this position, click here.
Today, every business is a technology business. Insight Enterprises, Inc. empowers organizations of all sizes with Insight Intelligent Technology Solutions™ and services to maximize the business value of IT. As a Fortune 500-ranked global provider of digital innovation, cloud/data center transformation, connected workforce, and supply chain optimization solutions and services, we help clients successfully manage their IT today while transforming for tomorrow. From IT strategy and design to implementation and management, our 6,800 employees help clients innovate and optimize their operations to run smarter. Discover more at insight.com.
- Founded in 1988 in Tempe, Arizona
- 7,400+ teammates in 19 countries providing Intelligent Technology Solutions for organizations across the globe
- $7.1 billion in revenue in 2018
- Ranked #417 on the 2018 Fortune 500, #12 on the 2018 CRN Solution Provider 500
- 2018 Dell EMC Server Partner of the Year, 2018 Intel Retail Solution Partner of the Year, 2018 Microsoft Worldwide Artificial Intelligence Partner of the Year
- Ranked #23 on the 2019 Fortune 50 Best Workplaces in Technology and #5 on the Phoenix Business Journal 2018 list of Best Places to Work (Extra Large Business)
- Signatory of the United Nations (UN) Global Compact and Affiliate Member of the Responsible Business Alliance
Today's talent leads tomorrow's success. Learn about careers at Insight: jobs.insight.com.
Insight is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation or any other characteristic protected by law.
Posting Notes: Tempe || Arizona (US-AZ) || United States (US) || DC-Cloud; MSOP-SC || None || Remote; US - Tempe, AZ ||
