The Project Leader – NSM & SOC Development is responsible for leading, implementation, and operationalization of a Network Security Monitoring (NSM) framework and to design a Security Operations Center (SOC). This role involves working with cross-functional teams to enhance threat detection, response capabilities, and overall cybersecurity resilience.
Key Responsibilities
Project Leading & Strategy
- Define and execute the roadmap for NSM and SOC development, ensuring alignment with business and security objectives.
- Develop project timelines, budgets, and resource plans to ensure successful delivery.
- Coordinate with IT, OT, CISO Office, risk, and compliance teams to ensure seamless integration of NSM and SOC capabilities.
- Establish KPIs and success metrics to measure the effectiveness of SOC and NSM initiatives.
Technical Leadership & Implementation
- Oversee the design and deployment of NSM tools, SIEM platforms, and threat detection systems.
- Lead the implementation of SOC workflows, playbooks, and automation to improve incident detection and response times.
- Ensure integration with existing security infrastructure, such as firewalls, IDS/IPS, endpoint security, and cloud security solutions.
- Identify and deploy threat intelligence feeds, log management solutions, and analytics platforms.
Operational & Team Leadership
- Develop SOC processes and standard operating procedures (SOPs) for monitoring, alerting, and incident response.
- Establish incident response frameworks and ensure collaboration with the Incident Response (IR) team.
Compliance & Risk Management
- Ensure compliance with regulatory standards and frameworks (e.g., NIST, ISO 27001, GDPR, SOC 2).
- Conduct risk assessments and align SOC/NSM capabilities with organizational risk tolerance.
- Work with legal and privacy teams to address monitoring-related legal and ethical considerations.
Stakeholder & Vendor Management
- Collaborate with senior Program leadership and CISO Office to define monitoring and response strategies.
- Evaluate and engage third-party security vendors, MSSPs, and service providers as needed.
- Stay updated on emerging threats, security trends, and best practices in NSM and SOC operations.
Required Qualifications
Technical Skills
- Strong knowledge of NSM and SOC frameworks, including SIEM, EDR, XDR, SOAR, IDS/IPS, and network forensics.
- Experience with cloud security monitoring (AWS, Azure, GCP).
- Familiarity with threat intelligence, log analysis, and security automation.
- Proficiency in scripting or automation tools (Python, PowerShell, Bash) is a plus.
Project Management & Leadership
- 5+ years of experience in cybersecurity and OT security, with at least 2+ years in SOC or NSM development.
- Experience leading large-scale cybersecurity projects.
- Strong understanding of incident response frameworks (MITRE ATT&CK, NIST 800-61, Cyber Kill Chain).
- Hands-on experience with risk management and regulatory compliance.
Soft Skills
- Excellent communication and stakeholder management skills.
- Strong problem-solving and analytical thinking.
- Ability to mentor and lead security teams.
Preferred Certifications
- CISSP (Certified Information Systems Security Professional)
- CISM (Certified Information Security Manager)
- GCIH (GIAC Certified Incident Handler)
- CEH (Certified Ethical Hacker)
- CCSP (Certified Cloud Security Professional)
Why Join Us?
- Lead a high-impact security project in a fast-paced environment.
- Work with cutting-edge security technologies and frameworks.
- Collaborate with top security professionals and industry experts.