iconectiv Director of Security Operations Center- Job ID 1957 in Bridgewater, New Jersey
#Location – Bridgewater, NJ
At iconectiv, we envision a world without boundaries, where the ability to access and exchange information is simple, secure and seamless. As the authoritative partner of the communications industry for more than 30 years, our market-leading solutions enable the interconnection of networks, devices, and applications for more than one billion people every day. Working closely with private, government and non-governmental organizations, iconectiv has intimate knowledge of the intricacies and complexities of creating, operating, and securing the telecommunications infrastructure for service providers, regulators, enterprises and content providers. iconectiv provides network and operations management, numbering, registry, fraud and revenue assurance and messaging solutions to more than 1,000 customers globally.
As the world continues to change in ways we cannot even begin to imagine, we know that one thing will never change -- the need to stay connected. The world of tomorrow is counting on us, and we are delivering.
A US-based company, Telcordia Technologies, Inc., doing business as iconectiv, is a wholly owned subsidiary of Ericsson. For more information, visit www.iconectiv.com.
This technical position is responsible for eyes on glass monitoring, investigation and response to security incidents impacting iconectiv and its partner systems.
•Analyze events from various information sources within the environment and action any potential security concerns.
•Act as a lead throughout incident scenarios and provide subject matter expertise in cybersecurity incident response.
•Responsible for the successful execution of incident handling procedures as well as direct response to security incidents.
•Analyze and identify technical and procedural vulnerabilities, providing recommendations that enable timely remediation.
•Conduct host based and network forensics, log analysis and malware triage supporting incident response.
•Maintain current knowledge of and recognize attacker tools, tactics, and procedures to produce indicators of compromise (IOCs) that can be utilized during active and future investigations.
•Examine network topologies and application designs to understand and identify data flows throughout the environment.
•Assist with the creation of processes and procedures, technical documentation and completion of project goals.
•Provide regular feedback to enhance our security monitoring, response and controls.
•Provide mentorship to other Cybersecurity Analysts.
•Develop and oversee reporting that provide analytics and metrics to the global Cybersecurity Command Center.
•8-10 years’ experience in IT Security; 4+ years’ experience working in a Security Incident Response.
•Extensive knowledge of TCP/IP, Web, Linux, Windows and related technologies.
•Extensive knowledge of implementing and/or managing Security Information Event Management (SIEM) solutions (Arcsight, LogRhythm, Alien Vault, etc.)
•Experience reviewing and correlating raw log files in a security capacity (SEIM, AV, IDS, Firewall, Servers, Database, etc.).
•Strong understanding of regular expressions and pattern matching.
•Experience with command line and network tools (ping, traceroute, etc.)
•Ability to conduct packet analysis using common tools (tcpdump, Wireshark, etc.)
•Working knowledge of intrusion tools and techniques and detection methods at both the network and host level.
•Expert knowledge of common detection and prevention technologies such as AV, IDS/IPS, DLP, Proxy, Firewalls, etc.).
•Security Operations Center Lead or Supervisor role desired; experience managing SOC analysts
•Security certifications required, such as CISSP, CISM, CEH, CompTIA, GSEC
•Ability to present to management on audit findings, security recommendations, and incident response.
•Ability to strategically collaborate with other security, infrastructure, and engineering teams.
•Strong written and verbal communication skills; requires ability to communicate technical analysis to both technical and non-technical audiences.
Relocation Benefits: This position is not eligible for relocation assistance.
DISCLAIMER: The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position. Therefore, employees assigned may be required to perform additional job tasks required by the manager.
We are proud to be an EOE Minorities/Females/Protected Veterans/Disabled employer. The Company’s status is a VEVRAA Federal Contractor. Request Priority Protected Veteran Referrals. We maintain a drug-free workplace and perform pre-employment substance abuse testing.