CSOC Analyst Lead

About The Position

Requirements

• 5+ years of experience within a cybersecurity environment; experience in a leadership role is preferred.
• Bachelors in information technology, Computer Science, or a related field; or relevant, commensurate work experience
• Experience in a security operations center, or similar environment, and identifying indications of compromise or attack and responding to incidents.
• CISSP, Network+, CEH, SANS FOR578: Cyber Threat Intelligence, SANS FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics, Splunk Core Certified Advanced Power User, Splunk Administrator, and Splunk SOAR administrator.
• Prior experience leading a Team of Tier 1 and Tier 2 Analysts

Nice To Haves

• Endpoint and network security experience required; IDS, IPS, EDR, ATP, Malware defenses and monitoring experience. Knowledge of MITRE ATTACK framework.
• Vulnerability/cyber incident management framework
• Experience in SOC Tier 3, managing a team of individuals.
• Experience with digital forensics and process
• Knowledge of Splunk, Crowdstrike, tenable, forescout, Xscalar, BigFix, MS360, Encase, Fireeye, Cortex SOAR XDR, Prisma or similar products in security realm.

Responsibilities

• Recruit top talent and assemble a team of dedicated security professionals. Provide thorough training to equip your team with the latest cybersecurity knowledge and skills.
• Mentor and support security analysts, engineers, and other team members to foster professional growth and development.
• Serve as the CSOC Tier 3 SME/Analyst, providing advanced technical guidance.
• Perform digital forensics and threat hunting. Lead the team in analyzing and containing the threat, mitigating the impact, and initiating recovery procedures.
• Analyze and interpret threat intelligence. Develop and implement strategies to protect the organization from cyber threats.
• Keeping abreast of the latest security threats, vulnerabilities, and attack techniques is essential. You will be responsible for integrating threat intelligence into your SOC's processes and ensuring the team is well-informed about emerging risks.
• Provide briefing to customer leadership on Threat incidents, mitigation approaches and solutions that will limit or reduce such risks in future.
• Suggest SOC process, workflows, and playbooks improvement to streamline incident response and enhance overall security operations.
• Ensure the SOC operates in compliance with relevant security standards, regulations, and policies.
• Conducting regular security awareness training for employees to enhance the overall security posture of the organization.

Benefits

• CSE offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.