Job Purpose
A Security Operations Center (SOC) plays a crucial role in enhancing cyber resilience. It serves as the central hub for monitoring, detecting, and responding to cyber threats in real-time.
The SOC Governance Specialist will play a pivotal role in defining and implementing governance frameworks that ensure the SOC operates efficiently and complies with industry standards, regulatory requirements, and best practices.
Key Responsibilities:
• Understand and implement standard frameworks such as SOC-CMM, CREST, MITRE, and similar standards.
• Implement frameworks for continuous improvement of Security Operations.
• Plan future SOC needs, addressing people, process, and technology requirements.
• Prioritize SOC activities based on risk profile.
• Monitor Cyber Hygiene on a periodic basis and coordinate remediation efforts.
• Ensure SOC activities comply with applicable laws, regulations, and standards.
• Track SOC performance metrics, such as incident response times, to assess effectiveness of operations.
• Proven expertise in threat detection and prevention, attack kill chain, and incident response (IR) process.
• Ensure timely and accurate reporting of incidents to all stakeholders.
• Manage Cyber Security policy and processes.
• Coordinate with Internal/external auditors and regulators.
• Point of contact for audit and compliance assessments.
Requirements and Qualifications:
• Bachelor's degree in computer science, Information Systems, or equivalent education.
• Knowledge on industry-leading security standards and frameworks (e.g., ISO 27001, NESA, NIST, PCI DSS, etc.).
• SOC Analyst, Security Operations certifications or equivalent are preferred.
• 7+ years of experience in SOC governance, risk management, and compliance.
• Experience in SOC tools (e.g., SIEM, XDR, EDR).
• Hands-on experience managing security Incidents.
