SOC Lead (Remote - Central) - Mandiant Chicago, IL Bookmark Share Print 274 0 1

Listing Description

Job Description

Mandiant Strategic Operations helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. Our consultants offer recommendations grounded in first-hand experience and based on a security model that maps directly to our clients’ strategic goals, aligning security programs to support an resilient defense strategy.

As a motivated and experienced Strategic Operations Consultant, you will utilize your skills to help customers assess, design, and build their own advanced threat detection capability and help to continually improve our own program methodology. In this role, you will leverage your strong security and consulting skills to lead and operate long term projects focusing on security operations, security event monitoring, cyber threat intelligence, threat hunting, and/or computer incidence response.

What You Will Do:

• Lead and manage long-term transformation engagements as with multiple workstreams
• Assess client incident response capabilities and internal programs
• Provide guidance on building and/or maturing information security programs and threat hunting programs, responding to and remediate computer security incidents, and implementation of tools and technologies used for enterprise security
• Provide oversight, management, and subject matter expertise to client Security Operations Center personnel
• Evaluate client needs, coordinate design for a solution, and clearly communicate the value of complex and highly technical subjects
• Implement and/or assess existing security controls
• Provide expert level knowledge of tools and technologies used for enterprise security
• Interface with clients to address concerns or escalations; track and drive to closure any issues that impact the service and its value to clients

Minimum Requirements:

• 3+ years providing expert experience building information security programs to include hands-on implementation and/or assessment of security controls
• 3+ years providing expert in-depth knowledge in collecting, analyzing, and escalating security events; responding to computer security incidents, and/or collecting, analyzing, and disseminating cyber threat intelligence
• 3+ years of experience in Incident Response and/or Security Operation Center development and practices
• 3+ years of experience in security frameworks such as the MITRE ATT&CK framework
• 3+ years of experience with the critical tools used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations. 
• 2+ years of experience developing or performing threat hunting in enterprise environments
• Understanding of security controls for common platforms and devices, including Windows, Unix, Linux, and network equipment

Desired Qualifications:

• Must be eligible to work in the US without sponsorship
• Ability to travel up to 30%
• Provide expert level knowledge of tools and technologies used for enterprise security
• Proven ability and understanding of the components that comprise a successful information security program, threat hunting program, and security operations center

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is a regionally-based role that must be located in Texas, Oklahoma, Kansas, Nebraska, South Dakota, North Dakota, Minnesota, Iowa, Missouri, Arkansas, Louisiana, Illinois, Wisconsin, Michigan, Indiana, Kentucky, Ohio, Pennsylvania