Senior CSOC Consultant
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Help AG is looking for an experienced Senior CSOC Consultant to contribute to the effective operation of the Cyber Security Operations Centre. The role involves proactive threat identification, incident investigation, and coordination with ITD stakeholders.
Key Skills for This Role
Responsibilities
- Build effective relations within ITD to ensure effective delivery of CSOC services
- Operate and maintain the CSOC technology stack
- Execute CSOC event and incident investigation processes to detect and analyze malicious activity
- Support identification and implementation of security monitoring use cases
- Draft, maintain and improve playbooks and incident response plans
- Design, implement and oversee deployment of automated actions for containment and response
- Design, implement and execute vulnerability and compliance management activities
- Provide reporting and metrics in support of IT Security, CSOC, Vulnerability Management and Compliance management
- Review MSSP activities to ensure adherence to Statement of Work and Service Level Agreements
- Support development of Cyber Security Operations Centre Roadmap
- Provide technical support and foster collaboration
- Run training sessions for other team members
Requirements
- Minimum 5 7 years relevant experience in a security organization of a financial institution or highly regulated company
- Relevant Information Security certifications (e.g., CISSP, CCSP, CISA, CISM, OSCP, SANS)
- Bachelor's Degree required
- Expertise in implementing and operating SIEMs, Security Analytics, Endpoint Detection and Response tooling
- Proven experience in cyber security event and incident investigations
- Experience in a CSOC Tier 3 role
Full Job Posting
Role Overview
- Help AG is looking for an experienced Senior CSOC consultant in the Cyber Security Operations Centre. The role will contribute to the effective operation of the CSOC, ensuring the protection of the organization's assets. The role will proactively identify threats and risks, implement detection and r
Responsibilities
- Build effective relations within ITD to ensure the effective delivery of CSOC services and response to events.
- Promote awareness and support the implementation of appropriate controls and processes.
- Support relationships with the Managed Security Service Provider, working closely to ensure adequate coverage and mutual understanding of security needs and expectations.
- Operate and maintain the CSOC technology stack.
- Execution of CSOC event and incident investigation processes to detect and analyze malicious activity, ensuring timely identification and response to security threats.
- Support the identification and implementation of security monitoring use cases based on the cyber threats as identified by threat modelling, threat intelligence and environmental factors.
- Draft, maintain and improve playbooks and incident response plans aligned with monitoring use cases.
- Design, implement and oversee the deployment of automated actions to ensure prompt containment and response measures are effectively executed.
- Design, implement and execute vulnerability and compliance management activities, including stakeholder reporting.
- Provide reporting and metrics in support of IT Security, CSOC, Vulnerability Management and Compliance management requirements.
- Provide constructive feedback to IT Security regarding identified control and monitoring gaps to improve security posture.
- Enable reporting and monitoring to ensure that all applications/products/services being implemented are in accordance with security specifications.
Additional Responsibilities
- Review MSSP activities to ensure adherence to the Statement of Work and Service Level Agreements, ensuring contractual obligations are met.
- Support on the development of the Cyber Security Operations Centre Roadmap and the execution of tasks and activities to implement required capabilities as per the roadmap.
- Provide technical support and foster an environment of collaboration, commitment, and team spirit.
- Review the design quality of others to ensure adherence to standards and identify corrective action, if needed.
- Support team members in line with the mission, vision, values, goals, and performance standards and ITD.
- Foster an environment of collaboration, commitment, and team spirit. Inspire, motivate, and guide junior team members.
- Run training sessions for other members of the team, transferring knowledge across the domain.
- Keep abreast of market conditions.
- Analyze risks, escalate issues, and report breaches of police, as necessary.
- Serve as a role model by consistently adhering to all policies and procedures.
Qualifications & Skills
- Minimum 5 7 years relevant experience working within a security organization of a financial institution or other highly regulated company.
- Relevant Information Security certifications, education, or training e.g.: CISSP, CCSP, CISA, CISM, OSCP, SANS, etc.
- Bachelor’s Degree is required.
- Development experience or knowledge of common programming languages.
- Expertise implementing and operating SIEMs, Security Analytics, Endpoint Detection and Response tooling.
- Expertise in SIEM use case, playbook development etc.
- Proven experience in cyber security event and incident investigations.
- Experience in a CSOC Tier 3 role.
- Proven experience in managing CSOC, Vulnerability and Compliance Management technologies.
- Exposure to machine learning, artificial intelligence, data science in a cyber security context
- Demonstrates adaptability to change.
- Skilled in collaborating and leveraging teamwork to drive necessary changes.
Benefits
- Health insurance with one of the leading global providers for medical insurance.
- Career progression and growth through challenging projects and work.
- Employee engagement and wellness campaigns activities throughout the year.
- Excellent learning and development opportunities.
- Annual flight tickets to home country.
- Inclusive and diverse working environment.
- Flexible/hybrid working environment.
- Open door policy.
About Us
- Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services.
- Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in 2020.
- Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor agnostic, trustworthy, independent, and maintaining its focus on all aspects of cybersecurity.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Help AG, an e& enterprise company
Cybersecurity Specialist (Database Activity Monitoring)
Riyadh, KSA
Help AG is seeking a Cybersecurity Specialist to manage and optimize Imperva Database Activity Monitoring (DAM) for a client in Riyadh. The role involves deploying agents, tuning policies, integrating with SIEM, and ensu
Senior Infrastructure Engineer
Dubai, UAE
Help AG is seeking a Senior Infrastructure Engineer to maintain MSS infrastructure including Windows/Linux servers, switches, firewalls, and cloud environments. The role involves health management, troubleshooting, patch
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Help AG is looking for a talented Associate Cybersecurity Defense Analyst to join their SOC team. The role involves monitoring security technologies and events using SIEM tools to detect and identify cybersecurity incide
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Help AG is hiring an Associate Cybersecurity Defense Analyst for its SOC team. The role involves monitoring security technologies and events using SIEM tools to detect and identify cybersecurity incidents. Candidates nee
IT Support Technician
Dubai, UAE
Help AG is seeking an IT Support Technician to maintain infrastructure and support employees. The role involves endpoint support, user onboarding, and infrastructure monitoring. Requires 1+ years of IT support experience
Offensive Cybersecurity Consultant
Dubai, UAE
Help AG is hiring an Offensive Security Consultant to perform vulnerability assessments, penetration testing, red teaming, and security research. Candidates need 3-4 years of experience, OSCP/OSCE certification, and stro
Security Consultant - Integration
Abu Dhabi, UAE
Help AG seeks an experienced Security Consultant for post-sales integration and pre-sales activities. The role involves deploying security solutions, leading projects, designing architectures, and delivering proof of con
Cyber Automation Intern
Dubai, UAE
Help AG is seeking a Cyber Automation Intern to contribute to Automation & AI initiatives within the Cyber Automation Team. The intern will work on tools like FortiSOAR, Python, AI/ML models, and APIs to automate MSS ope
Cybersecurity Specialist (Database Activity Monitoring)
Riyadh, KSA
Senior Infrastructure Engineer
Dubai, UAE
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Associate Cybersecurity Defense Analyst
Riyadh, KSA
IT Support Technician
Dubai, UAE
Offensive Cybersecurity Consultant
Dubai, UAE
Security Consultant - Integration
Abu Dhabi, UAE
Cyber Automation Intern
Dubai, UAE