Job description

The Security Engineer II will lead and oversee SOC analysts in incident detection and response, while optimizing SOC processes and ensuring robust security system configuration. The role requires advanced skills in cybersecurity tools and proficiency in handling security incidents, along with strong leadership and analytical abilities.

Responsibility

• Lead and supervise SOC analysts across all levels.
• Oversee all aspects of SOC operations, including monitoring security alerts, investigating incidents, and coordinating response efforts.
• Develop and implement incident response procedures.
• Conduct thorough post-incident analysis and documentation.
• Utilize advanced cybersecurity tools to detect and mitigate security threats.
• Stay abreast of emerging cyber threats and vulnerabilities.
• Fine-tune SOC processes and workflows.
• Conduct comprehensive gap assessments.
• Review and configure security systems within the Cyber Defence infrastructure.
• Collaborate with internal teams to implement robust security controls and mechanisms.

Qualifications

• Minimum of 3 years of experience in cybersecurity, with a focus on SOC operations and incident response.
• Advanced proficiency in SIEM, SOAR, UEBA, EDR/XDR, DLP, and firewall technologies.
• Proven track record of effectively handling security incidents and conducting incident response activities.
• Strong understanding of cyber defence principles and offensive security techniques.
• Certifications: Relevant industry certifications such as CISSP, CISM, GIAC, or equivalent are preferred.
• Excellent analytical and problem-solving skills.
• Exceptional communication and leadership skills.
• Collaborative mindset with the capability to work closely with cross-functional teams.