Vacancy caducado!
NTT DATA is seeking a highly motivated, flexible, organized, and detail oriented SOC Manager to join our dynamic team at Rockville, MD . If you want to learn, grow, and help then this is the job for you. We support a project/customer that ""seeks to better understand, treat, and ultimately prevent infectious, immunologic, and allergic disease seeks fundamental knowledge about the nature and behavior of living systems and the application of that knowledge to enhance health, lengthen life, and reduce illness and disability." What you do matters and has significant impact on the medical and scientific communities we serve. Your work here really matters and has real impact.
The Manager of Security Operations Center (SOC) ensures the SOC has the required visibility into the organizational network and provides an escalation point for anomalous activities, alerts, vulnerabilities and other security objectives. The manager works closely with other engineering teams and leads to ensure integration with other stakeholders that primarily includes software engineering, security architecture and Engineering.Responsibilities- Achieves operational objectives by monitoring, and enforcing the operational processes, practices, and standards of the SOC and sensitive security related systems and applications prepares and completes action plans and sets continuous improvement priorities.
- Acquires and manages the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk.
- Manages escalations for detected anomalous activities, vulnerabilities and threats to the emergency operations & Response functional area, and aids the SOC in tuning the alerts to improve efficacy.
- Ensure that protection and detection capabilities are acquired or developed using the information security analytics and engineering approach and are consistent with federal-level cybersecurity architecture.
- Provide leadership and direction to information technology (IT) personnel by ensuring that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities.
- Identifies, categorizes and prepares reports on trends and performance. To ensure the highest service quality and continuous improvement goals are achieved, enforces quality standards including service levels and reporting, analyzes service trends and performance reports to identify areas of opportunity to improve service and reduce support transactions and labor requirements. Works with management and clients to review operational performance and riskbased support levels and responses. Advises management regarding client requirements and operational alignment to client business and priorities.
- Maintains vendor relationships, and works closely with the Information Security Officer (ISO) and the office of the Chief Information Officer (CIO); Advises senior management on risk levels and security posture.
- BA or BS degree in MIS, CS, or related cybersecurity discipline (Masters preferred).
- CISSP, CISM, CRISC and\or other industry standard certifications preferred.
- 8+ years information security experience required.
- Proven background in security operations.
- Experience with managing vendor relationships, and defining and enforcing service delivery requirements.
- Project/Program Management and proven experience in delivering projects ontime.
- Three (3) years of experience with computer networking preferred.
- Experience with Firewalls, and Intrusion Detection Systems required.
- Experience with cloud (IaaS, Paas, SaaS) services preferred.
- Experience developing and tracking service level agreements.
- Extensive/deep analytical skills including SLA reporting and SLA metrics.
- Experience with Security Incident Response is required.
- Experience with Security Risk Management is required.
- Experience with Security Anomaly Detection and tuning of signatures is required.
- Understanding of Technical Infrastructure including networking, storage, servers
- Risk management processes (e.g., methods for assessing, mitigating and accepting risks).
- Cybersecurity principles, security models, organizational requirements (w.r.t. confidentiality, integrity, availability, authentication, non-repudiation), cyber threats, risks and vulnerabilities, cryptography and cryptographic key management concepts, host/network access control mechanisms (e.g., ACLs), network access, identity, & access management (e.g., PKIs), Computer networking concepts and protocols, and network security methodologies.
- Ethical hacking principles, general attack stages; Specific operational impacts of cybersecurity lapses; programming language structures and logic.
- Basic system administration, network, and operating system hardening techniques.
- Able to communicate, verbally and in writing, complex-technical issues with simplicity & clarity.
- Strong Interpersonal skills, excellent attention to detail and analytical skills.
- Able to exercise discretion and maintain confidentiality.
- Start apply with Xing
- Apply Now Start
- Please wait
Vacancy caducado!