SOC IR Manager

Job Description :

Candidate Required Former background & Experience:

• Experience working in SOC as a Tier-2 analyst.
• Technical skills relating to SIEM systems with focus on: SPLUNK and SENTINEL
• Windows & Linux environments incident response and investigation
• Experienced in analysing events in common firewalls, WAF Systems, and EDR systems
• including but not limited to: Fortinet, Checkpoint, F5, Trend Micro, CrowdStrike, SOAR tools.
• Windows and Linux Server internals, windows event ID’s. Active directory etc.
• Penetration Testing skills and optional certifications – big advantage.
• MITRE framework techniques
• Nessus Vulnerability scanner – familiarity and experience working with such tool.
• Good IT experience skills – an advantage
• Azure security & Sentinel SIEM experience – an advantage

Languages:

• English – Very Fluent (MUST) Reading, Writing and talking.
• Hebrew – verbally and capable of conducting lectures and technical training.

Mandatory Skills for this role:

• Ability to manage and fully analyse complex cyber incidents using SPLUNK SIEM, EDR and other security platforms.
• Ability to mentor soc team and make them expert IR analysts - must.
• Ability to define needed SIEM monitoring rules per emerging threats.
• Ability to define SOAR automation workflows.
• Create and lead tabletop cyber simulations and cyber incident training drills.
• Create Incident Response Playbooks and improve existing ones.
• Lead the SOAR, incident data enrichment and incident response automation capabilities.
• Lead SIEM related projects planning & budget.
• Lead red-team activities.

Candidate Aspirations:

• The role will provide the chosen candidate with the experience of working in one of the largest companies in the world, allowing to gain managerial experience and gain manager skills and relevant education.
• To technically lead a team of SOC analysts for incident response readiness and SIEM based investigation skills with highest level of IR investigation and response methodologies.
• Aspiration to be a junior manager and develop their skillset in the IR field.
• Highly motivated to learn and evolve.

About Tata Consultancy Services

Tata Consultancy Services (TCS) is an IT services, consulting and business solutions organization that has been partnering with many of the world’s largest businesses in their transformation journeys for over 50 years. TCS offers a consulting-led, cognitive powered, integrated portfolio of business, technology and engineering services and solutions. This is delivered through its unique Location Independent Agile™ delivery model, recognized as a benchmark of excellence in software development.

A part of the Tata group, India's largest multinational business group, TCS has over 500,000 of the world’s best-trained consultants in 47 countries.