About The Position
XM Cyber is a leading hybrid cloud security company that’s changing the way organizations approach cyber risk. XM Cyber transforms exposure management by demonstrating how attackers leverage and combine misconfigurations, vulnerabilities, identity exposures, and more across cloud and on-prem environments to compromise critical assets. With XM Cyber, you can see all the ways attackers might go and all the best ways to stop them, pinpointing where to remediate exposures with a fraction of the effort.
We are seeking a highly skilled and experienced SOC Manager to lead the development and operation of our Security Operations Center. This role involves building a new SOC team, adopting and deploying SIEM (Security Information and Event Management) technology, and managing incident response in a hybrid environment (on-prem/cloud).
- Team Recruitment and Leadership: Recruit and mentor a team of 2-3 SOC analysts. Lead, develop, and evaluate team performance.
- Technology Selection and Deployment: Identify and deploy appropriate SIEM technology to enhance our cybersecurity posture.
- Alert and Log Management: Map out all necessary alerts and logs for continuous monitoring and threat detection.
- Alert Classification and Prioritization: Develop a system to classify and prioritize alerts based on severity and impact.
- Hybrid Environment Monitoring: Oversee the monitoring of both on-premises and cloud-based systems.
- Automation and Process Improvement: Implement automation strategies to enhance the efficiency and effectiveness of the SOC operations.
- Incident Response Management: Lead and manage the incident response process, ensuring swift and effective resolution of security incidents.
- Proven experience as a SOC Manager or similar role.
- Extensive knowledge of SIEM technologies and deployment.
- Strong understanding of cybersecurity threats and incident response protocols.
- Experience in monitoring and securing hybrid environments.
- Excellent leadership and team management skills.
- Strong problem-solving, analytical skills, and automation approach
- Relevant certifications (CISSP, CISM, etc.) are desirable.