Security Operations Specialist (CSOC Engineer)

A UAE Investment Manager requires a CSOC Engineer. The role has been created to proactively identify threats and risks facing the firm, implement detection and response processes within the CSOC and lead Cyber security incident investigations. The role is expected to coordinate with stakeholders to ensure the smooth operation of CSOC's supporting technologies, demonstrate a deep understanding of cyber threats, and proactively identify, monitor and respond to potential risk events.

• Execution of CSOC event and incident investigation processes to detect and analyze malicious activity, ensuring timely identification and response to security threats
• Lead and guide the operation and maintenance of the CSOC technology stack (including Microsoft Sentinel)
• Lead and coordinate the identification and implementation of security monitoring use cases based on the cyber threats facing the firm identified by threat modelling, threat intelligence and environmental factors
• Draft, maintain and improve playbooks and incident response plans aligned with monitoring use cases
• Design, implement and oversee the deployment of automated actions to ensure prompt containment and response measures are effectively executed
• Design, implement and execute vulnerability and compliance management activities, including stakeholder reporting
• Provide reporting and metrics in support of IT Security, CSOC, Vulnerability Management and Compliance management requirements
• Provide constructive feedback to IT Security regarding identified control and monitoring gaps to improve ADIA's security posture
• Lead with the planning and execution of cyber security incident rehearsals and drills to test the resilience and response capabilities
• Enable reporting and monitoring to ensure that all applications/products/services being implemented are following security specifications
• Review MSSP activities to ensure adherence to the Statement of Work and Service Level Agreements, ensuring contractual obligations are met
• Support the development of the Cyber-Security Operations Centre Roadmap and the execution of tasks and activities to implement required capabilities as per the roadmap
• Execution and delivery of new security initiatives, ensuring successful implementation and alignment with organizational objectives
• Promote awareness and facilitate the implementation of appropriate controls and processes
• Manage relationships with security product vendors and service providers
• Partner with stakeholders to ensure that security controls are built into the requirements, architecture, design, and eventual build of the product
• Manage relationships with the Managed Security Service Provider, working closely to ensure adequate coverage and mutual understanding of security needs and expectations

Further Considerations:

• The role will require relocation to Abu Dhabi
• A mandatory Bachelors degree is required
• Compensation is tax-free and comprises; salary, bonus, allowances, housing and schooling (up to 4 children) + 30 days remote working per annum