Overview

Unit Manager SOC Jobs in Islāmābād, Pakistan at easypaisa digital bank

Title: Unit Manager SOC

Company: easypaisa digital bank

Location: Islāmābād, Pakistan

About easypaisa digital bank:

easypaisa is Pakistan’s first digital bank and has advanced Pakistan’s digital finance landscape. Backed by our shareholders, Telenor Group-a leading telecom operator in Asia and the Nordics- and Ant Group-the force behind Alipay, the world’s leading open internet platform, easypaisa deliver secure, convenient financial solutions to millions of Pakistanis.

POSITION SUMMARY:

The incumbent plays a critical leadership role in safeguarding the company's digital assets from cyber threats. This position involves managing the Security Operations Center and leading a team of cybersecurity professionals in monitoring security systems, responding to security incidents, and improving the organization’s overall security posture. The role will own monitoring of cyber security posture of organization and all lead incidents response from discovery until resolution. Standard operating procedures should be followed for detecting, classifying, and reporting incidents under the supervision of Head IS.

DUTIES & RESPONSIBILITIES:

  1. Develop and implement strategic plans for the SOC that align with the organization’s overall security strategies.
  2. Lead, motivate, and develop the SOC team, ensuring high levels of performance, reliability, and job satisfaction.
  3. Work closely with other department heads and senior management to define security policies and procedures.
  4. Responsible for Monitoring of cyber security posture of organization and generating actionable reports.
  5. Responsible for overall incident handling of cyber security incidents and reporting to senior management including crisis management team and extensive coordination with Group stakeholders.
  6. Ensure that sufficient detection and response capabilities are in place and drive the deployment of relevant security tools across the environment and optimize the processes to respond and investigate attacks and cyber security frauds.
  7. Support and guide on organizational, technical, operational, and corporate challenges resulting from incidents.
  8. Ensure team is motivated to deliver on ad hoc schedule and generate reports on timely basis Ability to prioritize and handle multiple tasks in a high- pressure environment. Innovation in presentation layer to enable business stakeholders better. Should be able to analyze, understand and recommend solutions to complex problems.
  9. Provide analysis and trending of security log data from a large number of heterogeneous IT security devices.
  10. Provide Incident Response (IR) support when analysis confirms actionable incident.
  11. To generate the daily reports, weekly reports, and monthly reports on time.
  12. To perform gap analysis of SIEM and integrate missing infrastructure components.
  13. To improve threat intelligence capability by identifying IOCs and other relevant information from external and internal sources and taking immediate actions for mitigations.
  14. Examines and monitors for attacks, intrusions and unusual, unauthorized, or illegal activity.
  15. Investigate and solve security breaches and other cyber security incidents and provide incident response.
  16. To create Incident handling playbooks as per NIST and other standard practices.
  17. Support IS team in operational activities including but not limited to access management governance and security audits.
  18. Recommend enhancements to SOC security process, procedures, and policies/SOP.
  19. Works as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats.

QUALIFICATION & EXPERIENCE:

  • BS or MS (computer Science, Information Security)/ BE (computer Science).
  • Management, Configuration, Analysis and Alert Configuration, implementing SOAR.
  • 5+ Years of hands-on experience of Server, Database and Application Vulnerability Scanning and Penetration Testing is an added advantage.
  • Preferred Information Security professional on SOC, Incident handling, Computer forensics and log investigations and vendor specific training and certs on SIEM.
  • Understanding of Network & Application Security and Systems Administration/programming, Data Networks, Security Operations and Incident reporting and management.
  • Good knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products.
  • Strong understanding of security incident management, malware management and vulnerability management processes.
  • Security monitoring experience with one or more SIEM technologies – QRadar and intrusion detection technologies.
  • Experience with web content filtering technology – policy engineering and troubleshooting.
  • Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.
  • A Bachelor's Degree in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering.

Upload your CV/resume or any other relevant file. Max. file size: 800 MB.