Security Operation Team Lead

The Security Operations Centre (SOC) Team Leader is responsible for managing and developing Infotrust’s SOC capability to meet Infotrust’s business objectives and deliver on Infotrust’s contracted services.

The SOC Team Leader is a senior member of Infotrust’s managed services and works with senior internal stakeholders such as the Global SOC Manager, the Advanced Threat Response Unit Lead, relevant technical Principals, and Service Delivery Managers to ensure the SOC delivers on Infotrust’s contractual obligations and does so optimally and with efficacy.

In addition, the SOC Team Leader is a technical lead and mentor for the SOC in security operations, incident response, vulnerability management, use of threat intelligence, and SOC operational process and procedures. When required, the SOC Team Leader will need to be able to represent the SOC and SOC-delivered services to Infotrust clients and be able to speak to matters relating to service performance, maturity, and general cybersecurity issues.

The SOC Team Leader is responsible for leading and managing the Manila-based SOC analyst team. The SOC Team Leader drives the continuous improvement of Infotrust’s SOC-delivered services, ensuring an optimal standard of platform and Standard Operating Procedure (SOP) development.

• Manage the Security Operations Centre (SOC) in Manila, including recruitment of new staff, maintenance of the Infotrust asset inventory, capacity monitoring and reporting, and roster updates.
  

• Own, develop, and initiate Infotrust’s Business Continuity Plan for Manila SOC.
  

• Manage HR issues, monthly billing, timekeeping, and overtime approvals with Infotrust’s Business Process Outsourcing provider.
  

• Day-to-day management and development of the SOC team, including the development and execution of individual employee development plans, coaching, individual training, and collective training outcomes.
  

• Develop and maintain industry-leading capability in services delivered by the SOC (for Infotrust and clients), including but not limited to security event management, incident response, and security operations.
  

• Drive operational readiness through planning for and participating in assessments, exercises, and rehearsals.
  

• Ensure the implementation and maintenance of the Managed Services Information Security Management System and that SOC operations are compliant with information security controls and standards.
  

• Maintain and deliver on Service Level Agreements, Standard Operating Procedures (SOPs), and instructions.
  

• Ensure an industry best practice for client reporting generated by the SOC, including insights and recommendations.
  

Requirements

• Minimum 6-8 years in Security Operations 
  
• Candidate must have a broad understanding of Security Operations within an MSSP/MSP environment.
  
• Knowledgeable with tools such as Microsoft Sentinel, Microsoft Defender, Splunk, and CrowdStrike
  

• Experience with other SIEMs (e.g., QRadar) is a plus, provided the candidate has a strong conceptual understanding of security technologies
  

Core Competencies:

• Incident & Vulnerability Management
  
• Threat Intelligence
  
• End-of-Life (EOL) process management
  

• Multi-tenant global SOC experience
  

Benefits

What We Offer:

✔ Great Place to Work-Certified Company

✔ Premium HMO

✔ Holistic employee experience

✔ Work from Home setup

✔ Rewards and incentives

✔ Monthly engagement activities

✔ Career advancement opportunities

✔ Paid referral program