SOC Specialist Manager

Location: Delft

In short:

As a SOC Specialist Manager within NCC Groups MXDR SOC, your role is pivotal in improving the efficacy of the current operating SOC. This role focusses around improving the existing processes and detections within the SOC, across all our tech stacks that support the SOC services.

Fox-IT

We are Fox-IT, also known as Fox. We stand for 'A More Secure Society.' Together, we are committed to making society safer through our technical and innovative solutions. From ethical hackers and incident responders to developers, security consultants, and more: we do this for organizations where cybersecurity is of great importance.

We are critical thinkers, naturally security-minded, and love continuous development. We are part of the NCC Group, and together with 2,000 colleagues around the world, we work towards our mission of creating a safer world.

We have the mission to make our society safer. Our colleagues are the ones who make this possible; a global team of talented individuals working together towards a safer future.

We want to create an environment where everyone can reach their full potential. We work together, are immensely creative, embrace differences, and want you to be part of our mission.

This is You

Key accountabilities for this role are as follows:

• Co-ordinate the reviews of recommended alert tuning opportunities that have been flagged by analysts and implement filters in detection logic at the appropriate point, liaising with our detection engineering team for efficient filtering to increase true-positive detection rate.
• Co-ordinate the baselining of clients that are being onboarded. Reviewing new clients’ estates, and again applying recommended tuning filters where possible to present an acceptable level of alerting to the relevant SOC Manager prior to go-live date. This is across our MXDR Splunk, Sentinel, EDR, MNIA, MIS, OXM, IDS/IPS and DDoS services.
• Co-ordinate and collaborate on the overarching playbook templates, playbook creation and playbook maintenance for all services supported by the SOC.
• Collaborate with the SOC management team on process alignment, onboarding clients and the standardization of operating playbooks.
• Occasional support the Head of SOC UK in client engagements across our Manchester office, as well as occasional on-site visits to clients when necessary.
• Conduct monthly/half year/yearly performance evaluation and mentorship for a small team of direct reports.
• Regularly update Head of SOC with improvement metrics, as well as advising on the MXDR strategy moving forwards with regards to specific improvements that can be identified in your role.

Minimum Requirements

· Minimum 5 years of experience within any SOC operations role.

· Minimum 2 years of experience within a SOC team lead role. (Flexible based on experience and technical level)

· Strong people management and leadership skills.

· Strong desire to improve and perfect processes, following an overall strategy of excellence.

Desirable Requirements

· Splunk Certified Power/Advanced Power User

· Microsoft SC200 Certified

· Experience working with CI/CD pipelines.

· CompTIA Certifications (Security+/ Network+/ Linux+)

· Crest, GIAC or CISSP Certification

· Degree in related field.

· Other relevant certifications.

Working Hours: The working hours are 0900-1730hrs Mon-Fri, and you would be expected to be working and contactable throughout those times. There is no scheduled out of hours work but may be required in emergency situations only.

Professionalism: Conduct yourself with professionalism, integrity, and ethical behaviour in all interactions and situations.

Proactive: Demonstrate a proactive approach to process improvement and process creation, ensuring conformity to the standards of the MXDR SOC.

Collaboration: Work well within a team environment, communicating effectively with colleagues from different departments and sharing insights to improve security posture.

Adaptability: Embrace changes in technology and processes, adapting to new challenges and learning quickly in a dynamic security landscape.

Our Offer

You will work in a place at the top of cybersecurity where your ideas are valued. You may not always be able to share all the details about your work, but you can tell that you are contributing to a safer society. Additionally, we offer you:

· A good salary that matches the things you have already done and will do;

· Flexible working hours and flexibility in working from home or at the office, allowing you to optimally combine your private life with your work;

· A favorable pension scheme, 26 vacation days (+4 mandatory days off), and 8% holiday pay with a full-time contract;

· Plenty of development opportunities: you can gain and share knowledge through training, TechTalks, events, and our own Fox Academy;

· A laptop and business phone. If you use your own phone, you will receive a reimbursement of up to €25 per month;

· A remote work allowance (for hybrid working);

· A performance bonus and profit sharing because we value your effort;

· When we work in the office, we gather every day for a delicious lunch.

Become a Foxer!

Do you recognize yourself in the above description and see the match? Let us know how you envision this! You can apply via the button below. You will then be directed to our ATS Workday, allowing us to process your application quickly.

A comprehensive screening is part of the onboarding process at Fox-IT.

Help from recruitment agencies, however well-intentioned, is (really) not needed.

About Your Application

We review every application and will contact you if your knowledge and work experience match what we are looking for. If you do not hear from us within 10 days, please do not be disappointed; we will keep your CV in our database for potential future vacancies and encourage you to keep an eye on our vacancies on our website. Feel free to apply for another position that appeals to you!

If you do not want us to keep your details, please send an email to global.ta@nccgroup.com. All personal data is stored in accordance with the NCC Group's privacy policy. We are committed to diversity and flexibility in the workplace. If you need any adjustments during the application process, please let us know.

If you need further modifications or additional assistance, feel free to ask!