Our client, an IT Services provider, is seeking for a seasoned Lead who has the experience in ownership and delivery of IT Security Operations.   The role will be involved extensively in security planning discussions as well as running with tasks.  Someone who has real experience with security incident handling is required.

Position Overview

We are looking for a Security Operations Team Lead to manage a team responsible for Security Operations activities including but not limited to event and incident management, Vulnerability Management (Qualys), and log platform integration and tuning (Splunk); this is a small team, the role requires that the Team Lead plays a hands-on role in day to day operations and is on-call.

  *   Strong operational security background

  *   Security Operations team management (on-call rotation, vacation scheduling, resourcing, etc.)

  *   Security Event / Incident management oversight and escalation

  *   Vulnerability program management

  *   Security Operations process design and continuous improvement

  *   Security Event and Incident response staff training and tabletop / test coordination and execution

  *   Splunk log integration work / tuning

  *   Willingness to jump into several initiatives / operational activities

  *   Strong sense of ownership and teamwork

  *   Strong documentation skills

  *   Ability to work in fast pace environment / multi-task

  *   Security Operations Center experience – Mandatory

  *   Security Event and Incident Management experience - Mandatory

  *   Logging platforms (preferably Splunk) – Mandatory

  *   Vulnerability scanners (preferably Qualys) – Mandatory

  *   Endpoint protection technologies / approaches (EDR, anti-malware, etc.) – Nice to have