PhiladelphiaRecruiter Since 2001
the smart solution for Philadelphia jobs

SOC Team Lead

Company: EAD Corporations
Location: Philadelphia
Posted on: February 25, 2021

Job Description:

FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant-- consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. Learn more about FireEye's world-class solutions and global footprint at Job Description Mandiant--is a recognized leader in cyber security expertise and has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that FireEye knows more about today's advanced threats than anyone.-- The Security Operations Center (SOC) SOC Team Lead has a supervisory role over the SOC Analysts and is accountable for all of the incidents tracked and investigated by the SOC team. The SOC Team Lead must have experience in performing Incident Response engagements, developing SOC policies, and working to support a culture of continuous improvement.-- The SOC Team Lead is a technical position that requires advanced skills and experience in cyber forensics, malware analysis, network traffic analysis, and compliance/litigation support. The SOC Team Lead must be capable of leading large investigations and organizing an incident response team to assist in containment and remediation efforts. Candidates for this position must be willing and capable of providing mentoring to junior members in the SOC team. Candidates for this position must enjoy working as a member of a highly technical team in a rapidly changing environment, be innovative and creative in detection tactics and techniques, and passion for protecting client data and corporate assets from diverse threats. What You Will Do:

  • Lead and conduct real-time and historical analysis using the SIEM, FireEye technologies, and other security analytics tools with a focus on identifying security events and false positives. Analyze potential security incidents after escalation by SOC Lead Analysts.
  • Manage incident investigations and responses involving advanced or complex threats.--
  • Manage incidents escalated by FireEye Managed Defense, SOC Analysts, IT leadership, and Major Security Incidents.--
  • Manage detailed incident response workflows, lead critical security incident response investigations, and work with asset owners, stakeholders, the SOC team, and relevant senior leadership to develop and execute remediation plans.
  • Lead technical meetings and working groups to address issues related to malware, threats, vulnerabilities, and cybersecurity preparedness
  • Lead post-incident reviews and develop after action reports.--
  • Lead the development of incident related communications, including incident response reports, incident status updates, and implementation of lessons learned after an incident. Primary author of daily intelligence summaries for awareness and assessment of applicability to the organization to determine if Customer's needs to act to mitigate. (i.e., industry wide breaches, zero-days that would impact the organization, global threats, etc.)
  • Lead the SOC Team in the maintenance and on-going improvement of all SOC processes and procedures, including the Incident Response Plan, IR Playbooks, Communications plans, SOC Monitoring, threat hunting, and SOC Metrics.
  • Manage day-to-day activities of the SOC Team regarding: Security Monitoring, Investigations and Response, and Threat and Vulnerability Intelligence.
  • Coordinate escalation for advance forensics, malware reverse-engineering, and additional host review tasks to third party vendors, including FireEye and others.
  • Lead the SOC team in researching and leveraging cybersecurity intelligence sources to improve SOC incident detection and response capabilities.
  • Articulate security incident details to business stakeholders and non-technical individuals. Qualifications
    • 4+ years of incident analysis, security architecture, malware research, SOC, or any other similar incident response experience.
    • Experience leading SOC teams during cyber monitoring, hunting, and incident response investigations is required.
    • Advanced experience performing forensics, malware reverse engineering, and/or penetration testing
    • In-depth knowledge of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and firewalls
    • In-depth knowledge of forensic tools such as EnCase, FTK, Volatility, FireEye Helix, and Redline
    • Knowledge of Microsoft Windows systems including active directory and Unix systems
    • In-depth knowledge of network devices such as firewalls, switches, and routers
    • Experience utilizing FireEye technology stack for security event triage and analysis and incident response
    • Experience utilizing industry leading SIEMs to conduct security investigations and threat hunting
    • Experienced in analyzing and inspecting log files, network packets, and other security tool information outputs from multiple system types
    • In-depth knowledge of basic reverse engineering principles and understand of malware, rootkits, TCP/UDP packets, and network protocols
    • Knowledge of web application security and incident investigations
    • Demonstrated ability to build, execute and lead SOC initiatives, programs and an organization
    • Strong knowledge of Information Security, Risk Classification, Incident Management, Security Monitoring, Threat Intelligence and Incident Response functions
    • Experience with technical analysis of email headers, links, and attachments to determine if an email is malicious, and then executing the appropriate remediation techniques to protect the environment
    • Collaborate with peers and multiple teams to identify improvements and identify areas for tuning use cases or signatures to enhance monitoring value
    • Required flexibility to work nights, weekends, and/or holiday shifts in the event of an incident response emergency Additional Qualifications:
      • One or more of the following certifications are recommended: CompTIA Security +; CompTIA Network +; Information systems Security Professional (CISSP); SANS-GIAC certification (Security Essentials/GCIH, GCFA, GCED, GCIA, GNFA, GPEN, GWAPRT); CISCO (CCNA); EC-Council (CEH, LPT)
      • Managerial experience is preferred
      • Team-oriented and skilled in working within a collaborative environment
      • Solid written and communication skills with the ability to present ideas in business-friendly and user-friendly language
      • Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment
      • Excellent problem-solving abilities
      • Strong communication and listening skills, a thorough approach to complex problem solving, decision-making ability, and a high motivation towards setting and delivering "excellence"
      • Demonstrated ability to be flexible, positive, and creative in a dynamic, fast paced and changing environment.
      • Willingness to acquire in-depth knowledge of network and host security technologies and products (such as endpoint, network, email security) and continuously improve these skills
      • Ability to clearly and concisely document and explain technical details (e.g. experience documenting incidents, technical writing, etc.) Additional Information At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Keywords: EAD Corporations, Philadelphia , SOC Team Lead, Other , Philadelphia, Pennsylvania

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Other Other Jobs

Description: CashierKnow what it's like to be in the stadium on game day Then you know what it's like to work at Buffalo Wild Wings. It's fun. It's fast-paced. We're at the top of our game - and we want to keep it (more...)
Company: Buffalo Wild Wings
Location: Lancaster
Posted on: 03/4/2021

Description: NOW HIRING WAREHOUSE ASSOCIATES/RETURNS PROCESSORS UNLIMITED OT Available PeopleShare has IMMEDIATE job openings in Lancaster We are looking for Warehouse Associates to work as Return Processors (more...)
Company: PeopleShare Inc
Location: Lancaster
Posted on: 03/4/2021

Entry Level Sales, Weekly pay+Benefits
Description: R15802Sales Representative165 East 9th Avenue, Runnemede, New Jersey 08078Job DescriptionDo you like a job where every day is different Do you enjoy meeting new people The Sales Representative role (more...)
Company: TruGreen
Location: Levittown
Posted on: 03/4/2021

QA Team Lead
Description: Job Title: QA Team LeadJob Location: Levittown, PennsylvaniaSalary: competitive salary, bonus and great benefitsJob Type: Full-TimeAbout Company: This is a full-time opening with our direct client in (more...)
Company: DivTek Global Solutions Inc.
Location: Levittown
Posted on: 03/4/2021

Regional East of the Mississippi (Lancaster,PA)
Description: 1200 per week guaranteedHome every other weekEarn 1.5
Company: FreightWorks, LLC.
Location: Lancaster
Posted on: 03/4/2021

Warehouse Mail Sorter- 2nd Shift
Description: ---Join our team and earn 14.25 per hour plus 1.00/hr differential --Pitney Bowes is now hiring for Full Time Direct Hire Warehouse Mail Sorters in our Levittown Facility.----This position will be (more...)
Company: Pitney Bowes
Location: Levittown
Posted on: 03/4/2021

Sales Reps Needed No Experience Necessary
Description: R15802Sales Representative165 East 9th Avenue, Runnemede, New Jersey 08078Job DescriptionDo you like a job where every day is different Do you enjoy meeting new people The Sales Representative role (more...)
Company: TruGreen
Location: Levittown
Posted on: 03/4/2021

Retail Sales
Description: Store Location: US-PA-Lancaster Overview: Ifyou'repassionateaboutagreatguestexperienceandtruehospitality,this is the role for you Whetheryou'rehelpingaguestfindtheperfectgiftfortheirmama'sbirthdayorshowing (more...)
Company: Cracker Barrel Old Country Store
Location: Lancaster
Posted on: 03/4/2021

Warehouse Mail Sorter- 3rd Shift
Description: ---Join our team and earn --14.25 per hour plus 2.00 differential --Pitney Bowes is now hiring for Full Time Direct Hire Warehouse Mail Sorters in our Levittown Facility.----This position will be working--from (more...)
Company: Pitney Bowes
Location: Levittown
Posted on: 03/4/2021

Meat Clerk - Part Time Job
Description: BJ's Wholesale Club was the first retailer to introduce the warehouse club concept in the northeastern United States. Today, we're a multibillion dollar operation with more than 200 clubs in 17--states (more...)
Company: BJ's Wholesale Club
Location: Lancaster
Posted on: 03/4/2021

Log In or Create An Account

Get the latest Pennsylvania jobs by following @recnetPA on Twitter!

Philadelphia RSS job feeds