Fortify Experts
Security Operations Center Technical Lead
Fortify Experts, Fort Worth, Texas, United States, 76102
Role: SOC/IR LeadLocation: Fort Worth, TXWork Schedule: You are expected to be onsite at the Fort Worth location for at least 2 days and at the Westlake, TX location for 1-2 days per week.Job Description:We are seeking a skilled and experienced Onsite SOC/IR lead with a focus on overseeing Security Operations Center (SOC) operations. In this role, you will be responsible for promptly and effectively responding to cybersecurity incidents, ensuring the security posture of the Client organization. Additionally, you will play a crucial role in supervising and optimizing SOC activities that will be delivered from Global Cyber fusion center. The position is for a client organization located in Fort Worth, TX.Responsibilities:Provide leadership and supervision to the SOC team, ensuring efficient and effective day-to-day operations.Collaborate with SOC analysts to enhance threat detection and response capabilities.Conduct regular reviews and assessments of SOC processes, procedures, and technologies.Lead and execute onsite incident response activities during cybersecurity incidents.Lead security incident and data breach investigations and handle post-incident reportingInvestigate and analyze security incidents to determine the root cause and extent of the breach.Develop and implement incident response plans to contain, eradicate, and recover from security incidents.Develop roadmaps, set objectives, and choose initiatives that support the goals of improving cyber defense capability and maturity at Client organizationStay abreast of the latest cybersecurity threats and vulnerabilities.Work closely with cross-functional teams, including IT, legal, and management, to coordinate incident response efforts for Client organizationGenerate regular reports on SOC performance, incident trends, and key metrics for management.Qualifications:5-10 years in a professional environment as part of Security Operations Center (SOC)At least 5 years working in a lead roles for SOC function within a global cyber security functionExpertise in Microsoft security toolsets like Sentinel and familiarity with MDE, DLP operations Expertise in incident response, and SOC operations, with a strong emphasis on metric-driven managementExperience managing a team of analysts with various skill sets that provides operations, maintenance and service support of security operations across an organizationExperience in a global service model where analysts will be supporting for US client across different time zoneBachelor's degree in Cybersecurity, Information Technology, or a related field.Proven experience in incident response, preferably in a leadership role.In-depth knowledge of cyber defense technologies, tools, and frameworks like SIEM, UEBA, TIP, SOAR, ASM, EDR, NDR etc.Familiarity with regulatory compliance and industry best practices.Strong analytical and problem-solving skills.Work onsite at client office locationExcellent communication and leadership abilities.Preferred Certifications:Certified Information Systems Security Professional (CISSP)Certified Incident Handler (GCIH) or equivalentMicrosoft security certificationIf you are a proactive and skilled cybersecurity professional with a passion for incident response and SOC operations oversight, we invite you to apply and contribute to the security posture of our organization.