Security Operations Center (SOC) Manager
Acoustic
Ready to take up a new challenge? Willing to work with top-notch digital marketing platform based on AI engine? Do you get excited about new exploits and cyber kill chains?
... we may have something for you.
Location: Candidate must work US Eastern Time Zone due to global team. Remote position, or Hybrid position in Atlanta, Conway AR, Boston, Gdansk Poland.
For Acoustic (acoustic.com), we are looking for a Security Operations Center Manager.
Your role as a Security Operations Center (SOC) Manager is to drive the strategy and effective operations of Acoustic's security capabilities. In this role you will be responsible for overseeing the day-to-day operations of our security program, including threat detection, vulnerability management, incident response, and cloud security compliance. You will be a key member of the security leadership team, providing guidance and direction to a team of security professionals and collaborating with other departments across the company. Your team will proactively identify and assess threats to users and systems, monitor systems for malicious activity, investigate intrusions and other relevant events, and maintain a detailed understanding of the evolving threat landscape. This role reports directly to the CISO.
Your primary responsibilities:
- Lead and manage a team of security analysts and engineers, build a high performing team, provide mentorship and coaching, and ensure individual and team success.
- Grow and manage threat detection and analysis, security monitoring tools, identify and process threats
- Manage security incidents following documented Incident Response plans and playbooks and ensure timely remediation.
- Recommend implementation of counter-measures or mitigating controls
- Lead the management of vulnerability identification and remediation compliance
- Lead cloud security compliance
- Drive continuous improvement, partnering with Engineering, DevOps, and IT as well as external stakeholders
- Measure and report on security performance by tracking key metrics, identify areas of improvement, and report to the CISO and other stakeholders
- 3+ years of experience as a SOC Analyst, Security Content Developer and/or Security Engineer
- 1+ year of leading/managing a Security Operations Center
- Strong understanding of attack vectors, persistence mechanisms, and detection avoidance tactics
- Incident management process development and deep understanding of Incident Response frameworks and root cause analysis
- Experience in designing and building security operations centers.
- Ability to understand systems quickly, and translate understanding into logic to detect anomalies
- Experience with SIEM/MDR/XDR tools including deployment and management
- Understanding of Linux, Windows, and Mac security concepts
- Knowledge of networking protocols and services such as HTTP, SSH, LDAP, FTP
- Working knowledge of security best practices for Amazon Web Services (AWS) and Azure
- Working knowledge of vulnerability management processes and tools (e.g. Rapid7)
- Must understand exploits, vulnerabilities, network attacks
- Previous experience with NIDS, HIDS and WAF desired
- Python/scripting and automation experience preferred
- Attention to detail
Required Education and Certifications:
- Bachelor's degree in STEM fields or equivalent work experience
We are offering you participation in building our new Security Operations Center, and coming in and helping build the capability which is not fully operational yet
We will help you to be successful in your role by providing relevant training on security and technologies, supportive environment, and providing opportunities to take on new responsibilities in other areas of the security program