SOC Team Lead

We are assisting our Computer Software & Networking client to look for SOC Team Lead to join their team in Petaling Jaya.

About the role

1. Supervision and Leadership:

• Lead and supervise a team of Level 1 analysts.
• Provide guidance, mentorship, and support to team members.
• Ensure that team members are trained and equipped to handle their responsibilities effectively.

2. Incident Detection and Analysis:

• Monitor security alerts and events to identify potential security incidents.
• Analyze and investigate security events to determine their nature and severity.

3. Incident Triage and Response:

• Prioritize and escalate security incidents based on their severity.
• Coordinate incident response activities, involving Level 2 and Level 3 teams if necessary.
• Ensure that security incidents are documented and handled according to established procedures.

4. Security Tools and Technologies:

• Familiarity with various security monitoring tools, SIEM (Security Information and Event Management) systems, and other security technologies.
• Help maintain and optimize security tools and technologies to improve incident detection and response.

5. Documentation and Reporting:

• Maintain detailed incident records and reports for compliance and analysis purposes.
• Communicate incident details to relevant stakeholders, including management and IT teams.

6. Security Awareness:

• Promote security awareness within the team and the organization.
• Keep up to date with the latest security threats and trends to enhance the team's capabilities.

7. Process Improvement:

• Collaborate with higher-level SOC teams and other stakeholders to identify areas for process improvement.
• Suggest and implement enhancements to SOC workflows and procedures.

Requirements

• Candidate must possess at least an Advance Diploma or Degree in IT related field.
• At least 5 years’ experience in a SOC & Cybersecurity related field preferred.
• Recommended certification(s): Relevant SOC industry certifications (CompTIA Security+, CISA, CISM, CISSP, CASP, CCSP, SSCP, SANS & GIAC: GMON GCIH, GCIA, GCFA, GCFE, GREM etc.) are a plus.
• Proven Leadership and supervisory experience.
• Proven experience in security operations and incident response.
• Strong knowledge of security monitoring tools, SIEM systems, and other security technologies.
• Strong problem-solving and analytical skills.
• Excellent communication and interpersonal skills.
• Ability to remain work in calm and handle high stress situations, strong analytical and problem-solving skills a fast-paced, 24/7 SOC environment.