The SOC Manager is responsible for managing the Tier1 Outsourced MSSP, and dark web Monitoring MSSP relationships. The SOC Manager is responsible for the overall security monitoring of all assets, tuning the alerts, analyzing the security event, and maintaining operational security controls in

support of Information Security Program. This role will be focused on leading and performing advanced triage and detail analysis of security

events of technology environments and integrating risk-based threat intelligence into the operational environment. The role also supports the

ability to maintain assurance in our technical security controls so that risks to the confidentiality, integrity, and availability of information

systems and infrastructure are sufficiently mitigated which in turn, supports the bank’s operational goals. Assist with vulnerability management oversight,

end user proxy access support as needed, prepare daily SOC reports and ensure that metrics are reported periodically. This role will have oversight of and

responsibility for two or more SOC Analysts and the outsourced MSSP relationship.

Requirements:

• Bachelor’s degree in computer science or information Systems, Information Technology or related focused technical training or in lieu 4 additional years of engineering and project management experience.

• 10 years of related experience in Information Security, with at least 6 years of experience at the lead level of a SOC (Security Operations Center) engaged in cyber incident management and analysis.

• Very familiar using SEIM and EDR tools. Ability to direct the MSSP to tune appropriately.

• Experience dealing with security multiple threat intelligence sources (paid or unpaid) and incorporating the same within our environment.

• Ability to lead the investigation and manage a cybersecurity event and work with the InfoSec and IT team to inspect, examine and resolve.

• Familiarity with other security tools like Vulnerability Management, Antivirus, Web proxies, forensics, etc.

• Previous supervisory or Leadership experience in a SOC environment.

• Two or more of any of the following certifications:

• SANS GIAC Certifications:

• GIAC Certified Perimeter Protection Analyst

• GCIH: GIAC Certified Incident Handler

• GOEC: GIAC Operations Essentials Certifications

• CompTIA Security

• • Certified Ethical Hacker (CEH)

• Knowledge of managing and leading cyber incidents using the Cyber Incident Response Plan (CIRP)

• Participate in Cyber exercise and be the subject matter expert for SOC operations and security events.

• Knowledge of SEIMs like Microsoft Sentinel , LogRhythm, Splunk, etc.; NDR like Darktrace, ExtraHop, Vectra, etc.

• Knowledge of SOC tools like VirusTotal, Abuse IPDb, Cisco Talos, PaloAto Watchfire, Threat Miner, Urlscan, etc.

• Knowledge working on alerts from systems, firewalls (PaloAlto, Fortinet); IDS/IPS, VPN, WAFs, etc.

• Knowledge of TCP/IP networking: networking topology, protocols, and services.

• Broad knowledge of computer networking technology.

• Azure

• 14 years of Security Operations or Security Administration.

• Familiarity with security tools (Pen Testing, Network Detection & Response).

• Ability to do malware analysis and establish a sandbox.

• One or more of the following certifications (or equivalent):

• SANS GIAC Certifications such as:

• GPEN: GIAC Penetration Tester

• Cisco Certified Network Associate Security (CCNA Security)

• Certified Network Defender (CND) or Certified SOC Analyst (CSA)Knowledge and experience of Unified Threat Management, Virtualization, Windows Desktop and Server operating systems, firewall technologies, application layer security controls, and IDS/IPS technologies.

• Knowledge of multiple NBA or UEBA tools.

• Knowledge of SOC Sandboxes and Malware Analysis tools, etc.

• Conduct threat hunting exercises and campaigns. Knowledge of DFIR best practices.

• Ability to work extended hours, when necessary, to support operational requirements.

• Availability for participation in on-call rotation.

  About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.