About the Job
Help AG is looking for an experienced Senior CSOC Consultant to join our Cyber Security Operations Centre (CSOC). This role is integral to the effective operation of the CSOC, ensuring the protection of the organization's assets. The successful candidate will proactively identify threats and risks, implement detection and response processes within the CSOC, and conduct cyber security incident investigations. Coordination with IT stakeholders is essential to ensure smooth operations of the CSOC's supporting technologies.
Responsibilities
- Build effective relationships within ITD to ensure the successful delivery of CSOC services and response to events.
- Promote awareness and facilitate the implementation of necessary controls and processes.
- Collaborate with the Managed Security Service Provider (MSSP) to ensure adequate coverage and a shared understanding of security needs.
- Operate and maintain the CSOC technology stack.
- Execute CSOC event and incident investigation processes, detecting and analyzing malicious activity for timely response.
- Support the identification and implementation of security monitoring use cases based on threat modeling, intelligence, and environmental factors.
- Draft, maintain, and enhance playbooks and incident response plans aligned with monitoring use cases.
- Design, implement, and oversee the deployment of automated actions for prompt containment and response measures.
- Conduct vulnerability and compliance management activities, including stakeholder reporting.
- Provide reporting and metrics in support of IT Security, CSOC, Vulnerability Management, and Compliance management requirements.
- Offer constructive feedback to IT Security concerning identified control and monitoring gaps to enhance security posture.
- Review MSSP activities to ensure adherence to contracts and service level agreements.
- Support the development of the CSOC roadmap and execute necessary tasks and activities to implement required capabilities.
- Foster collaboration and commitment within the team, guiding and motivating junior team members.
- Conduct training sessions to transfer knowledge across the domain.
- Analyze risks, escalate issues, and report breaches of policy as necessary.
- Serve as a role model by consistently adhering to all policies and procedures.
Qualifications & Skills
- Minimum 5 - 7 years of relevant experience within a security organization of a financial institution or other highly regulated company.
- Relevant information security certifications such as CISSP, CCSP, CISA, CISM, OSCP, SANS, etc.
- A Bachelor’s Degree is required.
- Development experience or knowledge of common programming languages.
- Expertise in implementing and operating SIEM, Security Analytics, and Endpoint Detection and Response tooling.
- Proven experience in cyber security event and incident investigations, including in a CSOC Tier 3 role.
- Exposure to machine learning, artificial intelligence, and data science in a cyber security context.
- Demonstrated adaptability, conflict resolution skills, and outstanding written and verbal communication skills.
- Excellent planning and organizational abilities.
Benefits
- Health insurance with one of the leading global providers.
- Career progression and growth through challenging projects.
- Employee engagement and wellness campaigns throughout the year.
- Excellent learning and development opportunities.
- Annual flight tickets to home country.
- An inclusive and diverse working environment.
- Flexible/hybrid working conditions and an open-door policy.
About Us
Help AG is the cybersecurity arm of e& enterprise and provides strategic consultancy combined with tailored information security solutions and services for enterprise businesses across the Middle East. Established in 2004 and acquired by e& in 2020, Help AG is committed to delivering unmatched value to customers by strengthening their cyber defenses and safeguarding their businesses.