Associate SOC Lead

The Associate SOC Lead is responsible for providing Global SOC support for the GalaxE Global Offices for Systems and network. Responsible for implementing incident response and remediation and acts as first and second-level response SPOC for all security incidents and risk-related service requests about systems and access-related requests. S/He should possess a thorough understanding of Security patching and vulnerability trends existing in today's landscapes. Should possess good documentation skills to publish reports & dashboards. Experience in IAM, AD audit, CB EDR, and DLP is preferred. Perform vulnerability assessments and Penetration Testing for identified environments within the scope of Management systems as and when required. S/He should have additional skills in scripting languages like Python, Perl, and others with experience in developing exploits. S/He works collaboratively with Global Security and IS Support (Global NOC) teams to perform security operations and related monitoring and technical audits as required for GalaxE environments covering applications, infrastructure, and vendor / third-party environments. S/He should be an excellent learner and quick to adapt to new technologies with strong hands-on experience in global SOC environments and Servers Management with solid knowledge and experience in System Internals and Malware research/log analysis. S/He should be willing to work in 24x7 shifts

Job Responsibilities

• Develop and execute Technical/monitoring SOC initiatives in alignment with ISMS and IS Global objectives and methodologies. Support monitoring of internal/hosted GalaxE environments.
• Ensure effective security at various monitoring phases and Server/System/Data lifecycles.
• Support the establishment and implementation of technology frameworks as part of GalaxE Security.
• Responsible for all SOC/Incident Management related aspects of GalaxE and related system security and risk management efforts. Proactively monitor alerts, follow-ups, and change control.
• Identify, and develop threat models & related incident monitoring plans for internal/hosted system environments – including cloud, virtual or local system infrastructures, and server administration.
• Conducts Network and System audits and prepares reports on Risks, Incident Response, Threat mapping, and VA/PT efforts that would include but are not limited to network/server security, firewalls, VPN, IPSEC, IDS/IPS, and EDR.
• Conducts system audits and prepares reports on Risks, Incident Response,
• Threat mapping, and system-related VA efforts that would include but not limited to system/server security, malware research/Protection, Data classification, DLP,
• Oversight Server Administration and system hardening, Audits, Patching, Log/Incident analysis, and Change/Roll-back controls.
• Expertise in implementing security technologies: IAM, DLP, EDR, Policies, and others
• Able to prepare the maintain the organizational policies and procedures required.
• Able to prepare and present dashboards and reports to leadership teams.
• Provide consultative advisory to the stakeholders including the client where necessary on the SOC/Monitoring infrastructures, Security Device Management, and system security-related efforts.
• Implement, monitor, and enforce GalaxE standards, policies, procedures, processes, and guidelines.
• Consults with the Reporting Manager and Security Stakeholders, regarding the monitoring, analysis, and response tasks through incident lifecycle management. Follows escalation Matrix.
• Provides support to the business/IT staff for security-related issues – including off-hours support.
• Ensures authorized access by investigating improper system/privilege access, reporting violations, monitoring alerts/risks/requests & recommend improvements. Prepares SOC reports.
• Desirable Experience in common IS/Service/Risk with frameworks like ITIL, ISO27001, NIST, OWASP
• Experience in System Audits, IAM provisioning, and reviews, system batch processing, Patching
• Expertise, a sound understanding of Server Management methodologies, Hardening and Incident analysis.
• Conduct and Participate in periodic compliance audits.

Additional skills for added advantage:

• Draft, update & maintain SOC procedures, presentations, reports, and other technical artifacts.
• Participates in the implementation and maintenance of the ISO 27001 standards, and ITIL including certification with ISO 27001, HIPAA, SOC,  and others as applicable. Conduct Calibration tasks.
• Training Portal Administration, Develops IS awareness and educational contents support BCM and contingency planning/Disaster Recovery efforts.
• Experience in Network technologies - Secure device configurations, audits, and implementations. Experience with networking and security technologies such as IPSEC (Internet Security), VPN, Routers, Switches, Firewalls, Intrusion Detection and Prevention, data leakage, WAF (Web Application Firewall), Scripting knowledge is a plus.
• Act like a leader in absence of or IS lead or manager.
• Experience to translate/communicating conceptual/technical data to Business Impact information.
• Knowledge of ISO 27001 standard, Risk Management, and BCP participation is an advantage.

Qualifications

Minimum Qualifications

• Any graduate
• 4-7 years of experience in information security with at least 3 years in Security Administration.
• EC-council Ethical Hacking certification, Sound knowledge of DLP Tool, and CB Defense.
• Good written and oral skills to demonstrate the risks aspects during preparation of reports.

About GalaxE.Solutions

GalaxE is a professional IT services firm that specializes in platform-driven solutions and the use of automation to achieve enterprise business transformation and mission-critical change for some of the largest companies in the world. Using our proprietary solution set, GxFource®, we apply machine learning techniques and predictive analytics tools as part of a broad artificial intelligence strategy that provides effective impact and data-driven business transformation.

Since its founding, GalaxE has been dedicated to advancing the benefits of technology. As we continue that legacy and look to the future, a focus on business enablement through agile, cost-efficient, and effective integration of people, process, and technology anchors our success. We revolutionize change in the costs of doing business that transform companies and their ability to leap beyond the competition.

At GalaxE we value people and are committed to diversity and inclusion where our employees are made to feel comfortable and are encouraged to be authentic. We focus on cultivating both traditional IT and non-traditional, new collar, workers through our Outsource to America®, program.

We are always looking for passionate, entrepreneurial-minded innovators and disrupters; game-changers that take ownership of the work they produce and bring it each and every day. Working with like-minded team members you will get a chance to discover, develop, and use cutting-edge technologies to transform the way we deliver creative business solutions.

Sound like you? Join us and find out for yourself what it means for you, and your career, to be part of the GalaxE team. Let’s build something, together. #WeAreGalaxE

Equal Opportunity Employer/Veterans/Disabled