INFORMATION SECURITY OPERATIONS CENTRE (SOC)

The Security Operations Centre (SOC) leads the SOC team and ensures Nsanos infrastructure is monitored and safeguarded from security threats. This leadership role entails strategic planning team management process optimisation and a prompt response to security incidents. The Head oversees the daily SOC operations assessing vulnerabilities and detecting any suspicious or malicious actions. The SOC offers a security incident detection service ensuring the correct implementation of security event supervision and thorough reporting of key metrics. Additionally the Head guides the SOCs service improvement plan.

Required Skills:

Strategic Leadership

• Develop and implement strategic plans for the SOC to align with Nsano goals and the evolving threat landscape.
• Ensure the SOC has the necessary tools technologies and processes to detect and respond to threats effectively.
• Provide strong leadership direction and mentorship to SOC personnel.

Team Management

• Lead and mentor the SOC team which includes security analysts incident responders and threat hunters.
• Oversee recruitment training and professional development for SOC staff.

SOC Operations

• Review performance metrics incident reports and other key indicators. This will help you identify areas for improvement and ensure that your team is performing at its best.
• Managing SOC tools and resources and ensuring these tools and resources are up-to-date.

Incident Management

• Ensure the rapid detection analysis and response to security incidents.
• Oversee post-incident reviews to identify root causes and lessons learned.
• Lead incident response efforts ensuring timely identification containment eradication and recovery from security incidents.
• Develop and maintain an incident response plan and coordinate with internal and external stakeholders.

Threat Intelligence

• Establish processes for gathering analysing and disseminating threat intelligence to inform defensive strategies.
• Collaborate with external organisations industry groups and vendors to stay updated on the latest threat trends.

Process Optimization

• Continuously evaluate SOC processes and tools for efficiency and effectiveness.
• Implement best practices and methodologies to enhance the SOCs operations.

Reporting and Communication

• Regularly report to senior leadership on the SOCs performance significant incidents and emerging threats.
• Foster strong communication between the SOC and other departments ensuring a cohesive approach to Nsano security.

Budget Management

• Develop and manage the SOC budget ensuring resources are allocated effectively.
• Evaluate and select vendors and tools in alignment with Nsanos needs and budget constraints.

Compliance and Audits

• Ensure that the SOCs operations align with industry regulations and compliance standards.
• Oversee periodic internal and external audits of the SOCs activities.

Continuous Improvement

• Drive initiatives to improve the SOCs capabilities processes and technologies.
• Foster a culture of continuous learning and adaptability within the team.