Cyber Security Manager - Operations & Incident Response
Hays

The end client is unable to sponsor or transfer visas for this position; all parties authorized to work in the US without sponsorship are encouraged to apply.

Our Client is seeking a Cyber Security Manager - Operations & Incident Response in Raleigh, NC/Remote.

Role Description

• Monitor and analyze Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Firewall event logs, and Security Incident and Event Management (SIEM) toolset event logs to identify security attacks and threats for remediation/suppression.
• Assist in Computer Security Incident Response activities for large organizations as a first line security analyst to identify various malicious threats in enterprise environments.
• Ensure timely accurate communications of alerts to IT, Network or Security groups regarding intrusions and compromises to their network infrastructure, applications and operating systems.
• Assist Senior Analysts with the implementation of counter-measures or mitigating controls.
• Responds to CSS, and SOC Customer Response Tickets.
• Primary escalation for L1 Security Analysts, and ensures that workload is managed and distributed well to analysts.
• Perform Technical Audits on a monthly basis to ensure that SLA, and Incident Tickets contain valuable information that is highly important to clients.
• Facilitate trainings, and mentoring to L1, and L2 Security Analysts to ensure accuracy, and timeliness of incident handling.
• Accountable for changes to policy and guidelines, to improve operational effectiveness and efficiency.
• **Required Skills/Abilities:***
• Broad experience of technologies including but not limited to; Firewalls, IPS & IDS, Active Directory, Windows Server, Linux, TCP/IP, Networks, AWS, CDN's, Vulnerability management and SIEM, DRM
• Basic knowledge of cyber security in Security Administration, incident containment, recovery and mitigation
• Excellent customer service skills
• Knowledge of firewalls and intrusion detection systems (specific knowledge of any of the following IDS/IPS is considered a plus: Cisco, Snort, Fortinet) or Linux/Windows System Administration
• Knowledge and experience in IT Security (Physical, hardware and software)
• Have a basic understanding of networking principles, TCP/IP, IP addressing, etc.
• Understanding of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns
• Ability to coach others
• Strong analytical, research, and problem-solving skills
• Willing to work flexible schedules as part of a 24 hours, 7 days a week, 365 days service delivery environment
• Excellent communication skills, both, written and verbal
• Attention to detail

Skills & Requirements

• With Bachelor's Degree in Computer Science or other related courses, preferably with Certification in Sec+ (Certifications can include any vendor certifications or general network security certification.)
• At least 2 years of experience of managing a SOC or leading a team
• CISSP certification required/preferred
• Experience with SIEM or Service Desk toolsets, preferred
• Evidence of working to SLAs within a Security Operations Center, preferred
• Experience with security assessment tools (NMAP, ISS, NESSUS) is preferred.
• Experience working within a shift-based structure as part of a 24x7x365 service delivery environment, preferred

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there's a position you really want, you're fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is an Equal Opportunity Employer including disability/veteran.

In accordance with applicable federal and state law protecting qualified individuals with known disabilities, Hays U.S. Corporation will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text 813.336.5570

Drug testing may be required; please contact a recruiter for more information.
#1144787