Team Lead Security Operations Center (SOC) (m/f/d)
Team
- The Information Security Team at Raisin enable Raisin business to mitigate information security events and incidents in timely fashion.
- Proactively safeguard our assets against evolving cyber security threats.
- Manage and own resources throughout the investigation, remediation and reporting of security incidents.
- Provide support to respond to cyber security incidents using Cyber Killchain and NIST framework.
- Prepare and test Incident management process and ensure correctness of implemented controls.
- Manage SIEM, correlate and build dashboards, alerts and workflows for monitoring and remediating incidents.
- Identifying and report key metrics and KPIs for management.
- Incident response experience in cloud environments, preferably AWS.
- Lead and manage SOC team, ensuring that team members are properly trained, motivated, and organized to effectively carry out their responsibility.
- Manage and optimize the use of SIEM and other security tooling.
- Active monitoring of Security events using SIEM (based on standard operating procedure).
- Oversee identification, investigation and response to security incidents. Maintain and improve security response plan.
- Effectively coordinate with internal and external stakeholder on security incidents.
- Keep updated with latest cyber security threats, trend and incorporate into threat intelligence.
- Understanding of vulnerabilities in OS, Applications, Network devices and perform vulnerability assessments.
- Maintain comprehensive documentation of SOC processes, procedures and incident playbooks.
- Generate regular SOC reports.
- Document all activities during an incident and provide leadership with status updates during the life cycle of the incident.
- Must comply with any regulatory requirements.
- Bachelor's Degree in Computer Science, Information Systems, Information Security or related technical discipline.
- 7+ years professional experience in information security and SOC monitoring.
- Experience in supervision or management of IT or security operations.
- You possess in-depth knowledge of security best practices and tooling such as EDR, AV, Firewalls, WAF etc.
- Strong ability to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and solution orientation.
- Willingness to learn and operate in a dynamic environment.
- You have experience in cyber attack monitoring and incident handling.
- You have experience working in a 24/7 operational environment.
At Raisin, we care about each other and it is one of our top priorities to foster an open and caring environment in which everyone feels welcome and comfortable. Our culture is strongly driven by our ambitious team, which, connects more than 40 different nationalities.You'll find us in our modern and open office in the trendy Kreuzberg district with a view of the Spree River, ideally connected to public transportation and surrounded by a variety of restaurants and shopping opportunities.As part of our team, you will benefit from:
- Personal training budget of 1,700 € and four full training days per year.
- Access to Babbel for continuous language learning.
- Hungry all the time? Snacks, daily fresh fruit as well as drinks provided at the office.
- Flexible working hours, home office and 28 vacation days.
- Enjoy more than 50+ different sports with Urban Sports Club: We subsidize your membership with more than €20 per month.
- A company pension scheme (Betriebliche Altersvorsorge), which we support with 20%.
- Do you miss being in the office? The Deutschland Ticket gets you there, which we subsidize with €25 per month.
- You are moving from another country or city to join us? We will support your relocation within Europe.