Service Manager at iOCO

What you’ll do:

SOC Operations Management

• Oversee the performance and operations of the SOC, ensuring SLA and KPI adherence.
• Supervise security analysts, shift leads, and third-party service providers.
• Maintain a 24/7 operational readiness of the SOC to detect and respond to security incidents.

Incident Management and Response

• Ensure timely detection, analysis, and response to cybersecurity incidents.
  Coordinate with incident response teams to manage and resolve incidents effectively.
  Develop post-incident reports and lessons-learned documentation to improve SOC performance.

Service Delivery and Quality Assurance

• Ensure SOC services meet contractual obligations and customer expectations.
  Conduct regular service reviews and maintain strong relationships with clients and other stakeholders..
  Monitor and enhance the quality of threat intelligence, monitoring, and response capabilities.

Team Leadership and Development

• Train and retain top talent for the SOC team.
  Assist management and conduct regular performance reviews and provide mentorship to team members.
  Foster a collaborative and high-performance team culture.

Process and Technology Improvement

• Evaluate and propose tools, technologies, and processes to enhance SOC capabilities.
  Collaborate with IT and security teams to ensure interoperability of systems and tools.
  Develop and maintain SOC policies, procedures, and documentation.

Reporting and Metrics

• Provide regular updates and detailed reports to senior management on SOC operations.
  Provide regular updates and detailed reports to clients on SOC operations.
  Track and analyse metrics related to incidents, SLA compliance, and team performance.

Your expertise:

• Minimum 5 years of experience in a SOC or cybersecurity environment, with at least 2 years in a leadership role.
• Experience managing 24/7 operations and working with geographically dispersed teams.
• Proven experience in incident response, threat analysis, and vulnerability management.
• Basic IT Knowledge: Fundamental understanding of operating systems (Windows, Linux), networking concepts (IP, DNS, TCP/IP), and common security protocols.
• Relevant experience in cybersecurity, especially within a SOC environment
• Practical experience in IT and networking roles
• Strong understanding of SIEM, SOAR, and EDR technologies.
• Knowledge of common attack vectors, TTPs (Tactics, Techniques, and Procedures), and cybersecurity frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001).
• Familiarity with scripting or automation for process improvement.

Qualifications required:

Education:

• A bachelor's degree in computer science, information security, or a related field

Certifications (preferred):

• Certifications like CompTIA Security+, CISSP, or CEH can be advantageous.
• EC-Council Certified SOC Analyst (CSA)
• EC-Council Certified Ethical Hacker
• Logpoint
• Symantec +EDR, WithSecure +EDR, Trend Micro +EDR
• WithSecure Vulnerability Management