Security Operation Team Lead

The Security Operations Centre (SOC) Team Leader is responsible for managing and developing Infotrusts SOC capability to meet Infotrusts business objectives and deliver on Infotrusts contracted services.

The SOC Team Leader is a senior member of Infotrusts managed services and works with senior internal stakeholders such as the Global SOC Manager the Advanced Threat Response Unit Lead relevant technical Principals and Service Delivery Managers to ensure the SOC delivers on Infotrusts contractual obligations and does so optimally and with efficacy.

In addition the SOC Team Leader is a technical lead and mentor for the SOC in security operations incident response vulnerability management use of threat intelligence and SOC operational process and procedures. When required the SOC Team Leader will need to be able to represent the SOC and SOC-delivered services to Infotrust clients and be able to speak to matters relating to service performance maturity and general cybersecurity issues.

The SOC Team Leader is responsible for leading and managing the Manila-based SOC analyst team. The SOC Team Leader drives the continuous improvement of Infotrusts SOC-delivered services ensuring an optimal standard of platform and Standard Operating Procedure (SOP) development.

• Manage the Security Operations Centre (SOC) in Manila including recruitment of new staff maintenance of the Infotrust asset inventory capacity monitoring and reporting and roster updates.
  

• Own develop and initiate Infotrusts Business Continuity Plan for Manila SOC.
  

• Manage HR issues monthly billing timekeeping and overtime approvals with Infotrusts Business Process Outsourcing provider.
  

• Day-to-day management and development of the SOC team including the development and execution of individual employee development plans coaching individual training and collective training outcomes.
  

• Develop and maintain industry-leading capability in services delivered by the SOC (for Infotrust and clients) including but not limited to security event management incident response and security operations.
  

• Drive operational readiness through planning for and participating in assessments exercises and rehearsals.
  

• Ensure the implementation and maintenance of the Managed Services Information Security Management System and that SOC operations are compliant with information security controls and standards.
  

• Maintain and deliver on Service Level Agreements Standard Operating Procedures (SOPs) and instructions.
  

• Ensure an industry best practice for client reporting generated by the SOC including insights and recommendations.
  

Requirements

• Minimum 6-8 years in Security Operations
  
• Candidate must have a broad understanding of Security Operations within an MSSP/MSP environment.
  
• Knowledgeable with tools such as Microsoft Sentinel Microsoft Defender Splunk and CrowdStrike
  

• Experience with other SIEMs (e.g. QRadar) is a plus provided the candidate has a strong conceptual understanding of security technologies
  

Core Competencies:

• Incident & Vulnerability Management
  
• Threat Intelligence
  
• End-of-Life (EOL) process management
  

• Multi-tenant global SOC experience
  

Benefits

What We Offer:

Great Place to Work-Certified Company

Premium HMO

Holistic employee experience

Work from Home setup

Rewards and incentives

Monthly engagement activities

Career advancement opportunities

Paid referral program