Security Operations Center Analyst

SOC Lead

MSS - Security Operations Center (SOC)

NL-Amsterdam

8-10 Years

English

Onsite

6 Months

Act as a trusted advisor and Cyber Incident subject matter expert guiding senior leadership to enable the management of business impacts and risk mitigation associated with a cyber incident or data breach.

? Lead and coordinate response to significant cyber incidents delivering effective and timely response measures through a coordinated and structured approach.

? Lead the development of cyber incident response containment plans and remediation strategies with the business; present strategic and tactical plans both orally and in written reports for key stakeholders and all involved third parties.

? Lead improvements in cyber incident response, incident management, incident investigation, and response principles and guidelines for incident management activities.

? Provide the expertise in establishing the extent of a Cyber Attack, the business impacts, and lead remediation activities coordinating with Incident Response and Threat Intelligence delivery teams to handle inquiries, briefings, and status reports in a variety of formats.

? Utilise detailed technical knowledge of Vulnerability Management to identify, assess, and prioritize vulnerabilities within the organization, ensuring that remediation efforts are effectively coordinated and tracked.

? Leverage Threat Intelligence to understand the evolving threat landscape, integrating this information into incident response strategies to enhance preparedness and response effectiveness.

? Technical & Management reporting to demonstrate the effectiveness and value of the teams work.

? Create incident reports and keep incident status up to date through regular updates.

? Oversee all aspects of the incident management process from evaluation to resolution.

? Maintain daily communication with the wider Group Security Operations Team.

? Support the development of incident management playbooks, templates, and coordinate incident exercises.

? Provide written and verbal briefings to key stakeholders and senior leaders.

? Provide incident root cause analysis, with a view to identifying and influencing future prevention by maintaining the Incident knowledge base.

? Work with the Threat Intelligence Team to monitor intelligence sources to maintain situational awareness of the cyber threat landscape and incident trends.You will work at the forefront of cyber defence operations, delivering Group Security

?s and Liberty Global

?s wider mission through helping to reduce the impact of cyber incidents.

You will provide the Subject Matter Expertise to coordinate and drive the response to serious cyber incidents through the best practice Incident Management (IM) life cycle and ensure root cause analysis is performed to support improvement of our controls.

You will lead service the Cyber Emergency Response Team (CERT), responsible for ensuring the delivery of the cyber security incident response life cycle for serious cyber incidents by ensuring that the relevant parts of the business and partners are engaged and activated to undertake the actions needed to reduce impact on our business.

When not responding to incidents, you will help develop our Incident Management and Incident Response capabilities, including writing and maintaining playbooks, assessing the Incident Response maturity, undertaking and assisting in table-top cyber-scenario exercises.

You will provide Subject Matter support to wider cyber security related projects and support the continuous service improvement of cyber incident response and management and providing oversight of all incidents and working with Security Architecture on trends.

The role focuses on stakeholder engagement and coordination, and whilst we seek candidates with a strong Cyber Incident Management background, exceptional communication skills and experience dealing with senior leadership and technical stakeholders are a must.

Additionally, detailed technical knowledge of Vulnerability Management and Threat Intelligence as supporting capabilities is essential.

Good aptitude, logical reasoning, and analytical thinking skills.

Good written and verbal communication skills.Inclination to learn and grow.

Attention to detail.Ability to work in cross-functional teams using agile methodologies.Problem-solving skills.

A values-driven individual who can think abstractly and can take ownership.