SOC Lead (Richmond)

A client of Insight Global's is looking for a SOC Lead to assist in managing their team of 12-15 security analysts. This individual will be representing SOC findings in customer calls, highlighting the values added by SOC, finding customer gaps, and working towards fixing the issue. This person will be distinguishing incidents opposed to non-incidents and leading the team with right direction. They will be steering the team of Analysts and Sr. Analysts on the Incident Handling processes and guiding the team on client processes so the team meets SLA requirements. They will coordinate with account management to set healthy expectations for clients and improve deliverables. They will be enduring that threats in the customer's environment are detected and notified in a timely manner as well as ensuring that the incident analysis runbooks, incident response runbooks and standard operating procedures are built, maintained, and are kept in line with best practices and customer expectations.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity / affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and / or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal. com.

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy : https : / / insightglobal.com / workforce-privacy-policy / .

Military background

Security background, network background, vulnerability background

Engineering graduate preferably B. E. / B tech in I. T of Computer Engineering

Background in vulnerability management, cybersecurity or network security

• 5-8 years of experience
• Preferred Certifications CISSP, CISA, CCNA, CEH
• Proficient experience working on Splunk and
• Experience managing a team and / or strong leadership / mentor experience
• Must be process oriented
• Strong analytical and technical skills in computer network defence operations.
• Prior experience of investigating security events and leading the team.
• Basic understanding of network security (Windows / Linux and Firewalls)
• Good understanding of SIEM SOC concepts and operations
• Clear technical and operational understanding of areas worked in
• Good verbal & written communication skills to articulate processes to team and client
• Working knowledge of : operating systems, network technologies (firewall, proxy, DNS, Netflow), Active Directory, Network communications and routing protocols (e. g., TCP, UDP, ICMP, BGP, MPLS, etc.), Common internet applications and standards (e. g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.).