Head of Cyber Security Operations Center Shift C - Abu Dhabi

Job description / Role

Employment: Full Time

Job purpose

Lead the Cyber Security Operations Center (CSOC) shift operations, covering a rotating shift for 24x7x365 coverage. Lead the activities of CSOC professionals on technical issues and the implementation of CSOC standard operating procedures to ensure all components are functioning optimally.

Key activities, responsibility & accountability

Responsibilities and accountabilities:

• Lead 24x7x365 CSOC team using the latest in monitoring and analytic technologies to identify and respond to threats effectively.
• Lead the establishment and maintenance of performance metrics to help measure productivity and operational readiness.
• Manage and engage with the CSOC team in the integration and use of technology, in the development and implementation of standard operating procedures (SOP), and in the response to cyber threats and in the execution of the incident response plan.
• Manage situation awareness during normal operations and incidents to provide communications and promote understanding of cyber threats and vulnerability to relevant stakeholders.
• Coach and develop the staff and achieve the quality and timeline metrics (SLA/KPI).
• Act as the first point of escalation when an event is escalated into a potential threat or incident, and provide communication exchange and knowledge transfer with other CSOC teams, internal and external stakeholders.
• Administer CSOC standard operating procedure (SOP), incident response plan (IRP) and review their application to ensure the controls, SOP, and IRP are operating effectively and efficiently.
• Engage and provide management oversight for the identification, triage, and response of events or incidents of apparent security breaches.
• Ensure compliance to SLA, process adherence, and process improvement to achieve operational objectives.
• Collect and maintain data needed to meet security reporting to CSOC manager.
• Maintain processes and procedures associated with security monitoring and response use cases to address and respond to potential security incidents and promote timely escalation and incident coordination.
• Support the configuration of existing tools and evaluate existing rules, filters, events, and use cases to analyze security event data, detect suspicious activity, and alert on potential security incidents.
• Drive collaboration efforts between the CSOC and counterparts to maximize effectiveness of detection efforts and knowledge of the local cyber security landscape.
• Provide input into the development of the department’s systems and processes, as well as develop and implement the section’s procedures, identifying opportunities for the continuous improvement of practices to increase productivity and operational efficiency.
• Monitor, control, and report operational and financial key performance indicators (KPIs) related to the section, to track performance and recommend corrective or mitigating actions.
• Ensure that all relevant reports are prepared timely and accurately, to meet section’s requirements and standards.

Professional certifications

• Bachelor’s degree
• Preferred: Master’s degree in information or cyber security.

• 7 years of relevant experience or equivalent as stated in the job.
• Preferred: 4+ years of technology experience, including troubleshooting and performing root cause analysis of ICT solutions.
• 3+ years of demonstrated experience managing incident security response team.

Company Industry: Marketing, Advertising & PR

Apply Now