< Back to All Positions

Advanced Monitoring Team Leader

Israel
,
Incident Response

Description

Sygnia is a top tier cybertechnology and services company, providing high-end consulting and incidentresponse support for organizations worldwide. Sygnia works with companies toproactively build their cyber resilience and to respond and defeat attackswithin their networks. It is the trusted advisor and cyber security serviceprovider of IT and security teams, senior managements, and boards of toporganizations worldwide, including Fortune 100 companies.

The company draws on toptalent from the ranks of elite military technology units and from across thecyber industry and has some of the world’s top talents in cyber security.Described by Forbes as a “cyber security delta force”, it applies technologicalsupremacy, digital combat experience, data analytics and a business-drivenmindset to cyber security, enabling organizations to excel in the age of cyber.

Sygnia is looking for an Advanced Monitoring Team Leader tolead a team of analysts that perform advanced and tailored monitoringactivities in clients’ environment. The role includes development of detectionanalyses, triage of alerts, investigation of security incidents, proactivethreat hunting and enhancement of sensors and overall visibility status. Thesuccessful candidate should be a capable leader, with deep technical knowledge,significant experience in SOC, SecOps or security monitoring, excellentcommunication capabilities, and the ability to operate in a fast and highlydynamic environment.

Responsibilities

  • Lead a team of analysts that performadvanced monitoring activities in clients’ environment, including developmentof analyses, triage of alerts, investigation of security incidents andenhancement of sensors and overall visibility status
  • Lead the development of ad-hocdetection and monitoring capabilities as part of large-scale incident responseefforts
  • Apply proactive threat huntingapproach in ongoing monitoring engagements, including forensic host andnetwork-based analysis, malware hunt and wide IOC searches
  • Develop internal processes and monitoringmethodologies for alerts handling, triage and escalation, visibilitymaintenance, automations and reporting
  • Communicate directly with the client’ssecurity personnel in all levels when providing regular updates andfollowing-up on alerts and security events
  • Manage activities of the monitoringteam and ensure that the team performs required tasks in accordance withdefined policies and security best practices
  • Generate and provide reports andmetrics on actionable data: incidents, weekly aggregation/trending, follow upprocedures, visibility status, etc.

Requirements

  • At least 5 years of a relevantexperience in the cyber security field (from military service and/or industry),specifically in SOC, SecOps or security monitoring teams, and at least 3 years’experience of team management
  • Independent bright and positiveleader, who strive for excellency, and able to succeed in an ultra-dynamic,fast pace environment
  • Experience in defining and buildingmonitoring processes (triage, documentation, communication with client, alerttesting, visibility overview, etc.)
  • Demonstrated in-depth understanding ofthe life cycle of advanced security threats, attack vectors and methods ofexploitation
  • Hands-on experience working with SIEMtechnologies. (e.g. Splunk, QRadar, ArcSight, Exabeam, etc.)
  • Strong technical understanding ofnetwork fundamentals, common Internet protocols and system and securitycontrols
  • Solid understanding of system andsecurity controls on at least two OSs (Windows, Linux / Unix and MacOS),including host-based forensics and experience with analyzing OS artifacts
  • Familiarity with cloud infrastructure,web application and servers, android and iOS mobile platforms
  • Knowledge and experience withscripting and programming (e.g. Python) – an advantage
  • Proven presentation skills and clientfacing experience, including the ability to articulate complex technical issuesin a concise and confident manner to both technical personnel and executivelevel management
  • Fluent English (written, spoken) – amust.
  • Willingness to travel abroad, and towork off hours as required

Advantages

  • Additional languages – an advantage
Apply for
This Position
Uploading...
fileuploaded.jpg
Upload failed. Max size for files is 10 MB.
Please review our privacy policy practices
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.