Security Operations Center (SOC), Manager - Ciena Maryland, USA Bookmark Share Print 1509 0 3

Listing Description

What will you do at Ciena?

The Security Operations Center (SOC) Manager is responsible for all internal security operations tasks and management of Security Operations Center. The SOC Manager is responsible for managing the technical and process direction of the CIENA Corporation Security Operations Team, provides easily understandable and usable operational and threat metrics to the leadership team, direction to the analysts as well as acts as a liaison to other teams within CIENA Corporation.

The SOC Manager will be expected to work alongside the team to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations. He/she needs to have hands-on experience with email, endpoint, and network threat detection and remediation in a SOC environment.

The SOC Manager should have familiarity with the principles of network and endpoint security, current threat and attack trends, a basic understanding of the OSI model, and have a working knowledge of defense in depth strategies.

The SOC Manager will be responsible for project success; staffing, the day-to-day management of security service, including SLA performance management, metrics development, management of process and procedures, recommending security improvements, and developing, implementing, and ensuring compliance with all security policies and procedures.

Additional responsibilities include creating processes, assessing incident reports, and developing and implementing crisis communication plans. To create compliance reports, support the audit process, measure SOC performance metrics, and report on security operations to business leaders.

RESPONSIBILITIES:

Operations

• Supervise and monitor the quality of services provided
• Recruit, select, train, assign, schedule, coach, counsel staff

• Provide exceptional tier 1-3 operational management, analysis, and investigation of security incidents
• Communicate job expectations; planning, monitoring, appraising and reviewing job contributions
• Contribute security information and recommendations to strategic plans and reviews
• Prepare and complete security action plans; implement production, productivity, quality and customer-service standards; resolve problems; complete audits; identify trends
• Act as liaison between the Security Operations team and the customer’s technical management staff
• Work independently and/or collaboratively with management team to set and/or implement policies, procedures and systems and to follow through with implementation
• Communicate all operating policies and/or issues at department meetings
• Plans, schedules, and reviews workload and manpower to make sure metrics are being met most efficiently
• Inform senior management about performance and issues, including escalations
• Monitor and manage customer SLA compliance for SOC
• Verify discovered vulnerabilities; correlate and collate the information; and create intelligence reports that communicate the results of the analyses to people who need to know them (e.g., C-Suite, executives, government decision-makers, security officials)
• Extensive experience working with SIEM, Log Aggregators, Incident Response Management solutions
• Strong technical knowledge of Networking, Operating Systems and enterprise integrations
• Experience managing standards, developing Security Operations Process
• Proven experience with multiple security event detection platforms
• Thorough understanding of TCP/IP
• Understand IDS / IPS rules to identify and/or prevent malicious activity
• Thorough understanding of application protocols

• Provide exceptional tier 1-3 operational management, analysis, and investigation of security incidents

Incident Response

• Respond to network-based attacks

• Network infrastructure attacks

• Perform incident detection

• Network incidents

• Member of a CSIRT (Computer Security Incident Response Team)

QUALIFICATIONS:

• 2 or more years of SOC management work experience.
• 3 or more years inside of a Security Operations environment.
• Experience in management, IT Security, operations, ITIL frame work, agile project management, and leadership.
• Ability to build consensus and relationships among managers, partners, and employees.
• Experience with managing a diverse group of technological oriented members.
• Must possess leadership, communication, conflict management, people management, reporting, critical thinking and problem solving, and planning and organization skills.

EDUCATION:

• Bachelor’s degree in Cybersecurity, Computer Engineering, Information Technology or related field.
• Proven ability to manage all operations, maintenance and functions of the Security Policy, within the environment.
• Broad understanding of Cyber Security and Network is a must.
• Candidate will possess ability to be a successful self-starter.
• Possess excellent communication, negotiation, and managerial skills.
• Experience with managing diverse groups of technologically oriented people.
• Strategic thinking; focused on providing business value to end-users.