Description:
As a TCS SOC Analyst Lead, you will be responsible for overseeing the other members of Security Operation Center (SOC) team. As a lead, you will manage the day-to-day activities of a team of analysts (L1 – L3) supporting up to 3 different SOCs for multiple customers. In this role you will provide technical leadership and guidance to the team members as well as coordinating incidents as and when required. You will be the point of contact for business in SOC related issues.
Key responsibilities:
- Active involvement in managing risk, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks (tools, techniques, Procedures) in support of technologies managed by the Security Operations Center.
- Manage technical, compliance and customer relations aspects of the SOC.
- Ability to work 24*7 shifts, managing a team of analysts working shifts.
- Manage and report on incidents from initial detection through final resolution.
- Oversee the security incident management and vulnerability management processes.
- Coordinate with IT teams on escalations, tracking, performance issues, and outages.
- Ensure that corporate data and technology platform components are safeguarded from known threats.
- Communicate effectively with customers, teammates, and management. Provide recommendations in tuning and optimisation of security systems, SOC security process, procedures, and policies.
- Support the definition, creation, and maintenance of SIEM correlation rules, customer build documents, security process and procedures. Follow ITIL practices regarding incidents, problems and change management.
- Stay up to date with emerging security threats including applicable regulatory security requirements.
Key skills/knowledge/experience:
- Leadership / Management Experience.
- Bachelor's Degree / Diploma or equivalent experience in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering.
- Exceptional Understanding of security incident management, malware management and vulnerability management processes.
- Knowledge of GRC management and audit processes
- Excellent English written and verbal skills.
- Experience in digital investigations including computer forensics, network forensics, malware analysis and memory analysis.
- Team management and ability to adjust to changing priorities.
- Critical and strategic thinker, negotiator, and consensus builder.