Cyber Security Lead Technical Consultant

General Responsibilities: 

• Acting as Cyber security technical project lead and support to multinational SOC team, participate in pre-sales and lead handover to BAU.

• Responsible for understanding the threat landscape and building/executing required action plan.

• Lead technical activities, oversee delivery improvements in Cyber security managed detection and response process.

• Support development of SOPs, Resiliency plans, and other necessary documentation to support Security Operations.

• Operational coordination and dispatch of task, alerts/events/incidents and sources.

• Escalation management, managing non-standard situations.

• Building advanced reporting, ensuring the SOC KPIs, SLAs and other metrics are reported.

• Maintain, contribute and improve training plans, operational model, operational processes, documentation to mature SOC and dependent services.

• Be responsible for lessons learnt, RCAs and tabletop exercises.

• Maintain technical knowledge on the technologies and technological stack required to run modern and efficient SOC, suggest improvements.

• Provide thought leadership and guidance on intelligence/analytics research to build capabilities to provide automated and proactive detection and response to threats.

• Routinely brief and prepare updates to the counterpart on the active incidents and manage expectations.

• Build and leverage effective relationships across Cyber Security teams, as well as external teams in various lines-of-business, ensuring clear lines of communication and a comprehensive approach to security.

Requirements:

• University degree in Information Security/ Computer Science/ Information Technology.
• Previous experience as a lead technical consultant or in a similar position.
• At least 3-5 years of hands on Information Security SOC/Incident Response experience.
• Demonstrated experience in handling security events in critical environments; hands-on troubleshooting, analysis, and technical expertise to resolve incidents and service requests.
• Previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations etc.
• Strong knowledge of enterprise detection technologies, processes and technological stack/ tools - SIEM, EDR, ITSM and other tools/technologies required to run modern and efficient SOC.
• Good knowledge of network protocols and operating systems (Windows, Unix, Linux, Databases).
• Excellent English language skills.
• SOC related certification is an advantage.
• Good communication skills, result orientated, high sense of responsibility, preciseness.

We offer:

• Monthly gross salary from 4300 to 5500 EUR, depending on your level of expertise. 

• Hybrid way of working with cozy office space in the center of Riga, when needed, and flexible working hours opportunities, based on your own preferences. 

• Family-oriented company values and healthy attitude towards work and life balance - granting additional 4 vacation days, birthday leave, "Happy Land" space in the office for children, etc. 

• Individual development and learning plan, including yearly budget for external training. 

• Necessary essentials health insurance with dental services and sports coverage. 

• Possibility to work in mutual trust and positive team environment, to be creative and improve working flows by self-initiatives. 

• Friendly, multicultural and cooperation orientated colleagues.