Information TechnologyFull-TimeSenior-level(6+ yrs)
Job Description
Role Purpose
The Senior Manager SOC will be responsible for the management of the in-house local SOC and the offshore outsourced SOC. The role involves the management and supervision of a team of Security Analysts and technical experts working in a 24x7 shift environment, providing technical and process direction of the Security Operations Center, and acting as a liaison to other teams within the Bank.
The SOC is responsible for providing 24x7x365 continuous investigation of correlated security event feeds and the appropriate triage and escalation in case of an identified security incident. The SOC is the primary contact for any suspected security incident and works together with the Incident Response teams on resolving incidents and remediating threats across the Bank.
Key Responsibilities
Incident Management: Manage the SOC (in-house and outsourced) to detect, respond to, and manage security incidents to protect the Group’s Information assets. Be accountable for end-to-end security incident management.
Framework & Policy Development: Formulate and develop the Security Operations Framework, including SOC processes, policies, and procedures. Develop and maintain SOC-related policies to ensure data is continuously collected, correlated, and analyzed to detect threats.
Operations Oversight: Manage day-to-day activities to ensure effective threat detection and prevention. Set key security performance indicators (KPIs) and metrics to ensure proper service delivery.
Service Improvement: Ensure continuous SOC services improvement and proper integration of new security services within the monitoring and detection capability.
Leadership: Provide leadership, guidance, and technical expertise in running the SOC. Create shift schedules to ensure 24x7 coverage and build long-term career development plans for team members.
Stakeholder Management: Collaborate with internal stakeholders (Security, Risk, Operations, IT, NOC) to ensure appropriate threat response and provide briefings regarding ongoing incidents and threat levels.
Reporting: Develop metrics to communicate risk levels and provide regular reports for management, compliance, or audit needs.
Requirements
Education: Bachelor’s degree in Information Technology, Information Security/Assurance, Engineering, or a similar field.
Certifications: Hold at least one relevant industry certification (GCIH, GCED, CISSP, CISA, CISM, etc.).
Experience: Minimum 5-7 years of Security leadership experience. Experience building and maintaining high-performance teams of analysts.
Technical Skills:
Understanding of SIEM tools (Splunk, ArcSight, RSA, McAfee ePO, etc.).
Expertise with industry standard frameworks (ISO, NIST, PCI).
Knowledge of modern security concepts: Strong Authentication, End Point Security, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), PKI, DLP, and IAM.
Experience maintaining metrics and SLAs.
How to Apply
Interested and qualified candidates should apply online through the Equity Bank recruitment portal at equitybank.taleo.net.
How to Apply
Interested and qualified candidates should apply online through the Equity Bank recruitment portal. Go to Equity Bank Kenya on equitybank.taleo.net to submit your application.