Logo
Inspira Enterprise

Cybersecurity Operations Lead

Inspira Enterprise, Fort Worth, TX, United States

We are seeking a skilled and experienced Onsite SOC/IR lead with a focus on overseeing Security Operations Center (SOC) operations. In this role, you will be responsible for promptly and effectively responding to cybersecurity incidents, ensuring the security posture of the Client organization. Additionally, you will play a crucial role in supervising and optimizing SOC activities that will be delivered from Global Cyber fusion center. The position is for a client organization located in Fort Worth, TX.

About the Role

Provide leadership and supervision to the SOC team, ensuring efficient and effective day-to-day operations. Collaborate with SOC analysts to enhance threat detection and response capabilities. Conduct regular reviews and assessments of SOC processes, procedures, and technologies. Lead and execute onsite incident response activities during cybersecurity incidents. Lead security incident and data breach investigations and handle post-incident reporting. Investigate and analyze security incidents to determine the root cause and extent of the breach. Develop and implement incident response plans to contain, eradicate, and recover from security incidents. Develop roadmaps, set objectives, and choose initiatives that support the goals of improving cyber defense capability and maturity at Client organization. Stay abreast of the latest cybersecurity threats and vulnerabilities. Work closely with cross-functional teams, including IT, legal, and management, to coordinate incident response efforts for Client organization. Generate regular reports on SOC performance, incident trends, and key metrics for management.

Responsibilities

  • Provide leadership and supervision to the SOC team, ensuring efficient and effective day-to-day operations.
  • Collaborate with SOC analysts to enhance threat detection and response capabilities.
  • Conduct regular reviews and assessments of SOC processes, procedures, and technologies.
  • Lead and execute onsite incident response activities during cybersecurity incidents.
  • Lead security incident and data breach investigations and handle post-incident reporting.
  • Investigate and analyze security incidents to determine the root cause and extent of the breach.
  • Develop and implement incident response plans to contain, eradicate, and recover from security incidents.
  • Develop roadmaps, set objectives, and choose initiatives that support the goals of improving cyber defense capability and maturity at Client organization.
  • Stay abreast of the latest cybersecurity threats and vulnerabilities.
  • Work closely with cross-functional teams, including IT, legal, and management, to coordinate incident response efforts for Client organization.
  • Generate regular reports on SOC performance, incident trends, and key metrics for management.

Qualifications

  • 5-10 years in a professional environment as part of Security Operations Center (SOC).
  • At least 5 years working in lead roles for SOC function within a global cyber security function.
  • Expertise in Microsoft security toolsets like Sentinel and familiarity with MDE, DLP operations.
  • Expertise in incident response, and SOC operations, with a strong emphasis on metric-driven management.
  • Experience managing a team of analysts with various skill sets that provides operations, maintenance and service support of security operations across an organization.
  • Experience in a global service model where analysts will be supporting for US client across different time zone.
  • Bachelor's degree in Cybersecurity, Information Technology, or a related field.
  • Proven experience in incident response, preferably in a leadership role.
  • In-depth knowledge of cyber defense technologies, tools, and frameworks like SIEM, UEBA, TIP, SOAR, ASM, EDR, NDR etc.
  • Familiarity with regulatory compliance and industry best practices.
  • Strong analytical and problem-solving skills.
  • Work onsite at client office location.
  • Excellent communication and leadership abilities.

Preferred Skills

  • Certified Information Systems Security Professional (CISSP).
  • Certified Incident Handler (GCIH) or equivalent.
  • Microsoft security certification.

If you are a proactive and skilled cybersecurity professional with a passion for incident response and SOC operations oversight, we invite you to apply and contribute to the security posture of our organization.

Work Schedule: You are expected to be onsite at the Fort Worth location for at least 2 days and at the Westlake location for 1-2 days per week.