SOC and Security Compliance Senior Manager

The Senior Manager - SOC and Security Compliance role involves overseeing and managing comprehensive cyber security and information security audits, reviews, and compliance activities within client environments. Extensive experience and expertise are essential for guiding the SOC team and ensuring adherence to best business practices and regulatory standards. The role includes leading and mentoring a team of professionals, managing multiple client projects, and maintaining the highest standards of confidentiality and security. Key Responsibilities: • Leadership and Strategy: o Lead the development and execution of detailed cyber security and information security audits, policy and procedure reviews, and gap analysis for clients. o Develop comprehensive audit plans and strategies to ensure thorough and effective audits and reviews. o Provide strategic guidance to clients on best practices for security compliance and risk management. • Audit Management: o Oversee the execution of audit activities, including evidence review and analysis, ensuring accurate and appropriate conclusions are drawn. o Draft high-quality reports that document findings and recommended actions in accordance with departmental and industry standards. o Correlate results from IT assessments/audits into actionable recommendations based on best business practices and regulatory standards. o Conduct compliance audits in accordance with, but not limited to, PCI DSS, SWIFT, ISO 27001:2022, Security Operations Maturity Assessment, SOC Compliance as per NIST, PAYNET Third Party Acquirer’s Compliance Requirements, and PAYMENT Cyber Resilience Audit Requirements. • SOC Compliance and Operations: o Perform internal reviews to ensure that the Security Operations Centre (SOC) complies with internal policies and procedures. o Oversee the following areas of SOC review:  SOC Operations Management  SOC Technology Operation  SOC Tool Functionality and Operation  Event Analysis and Response Procedures  SOC Security Management (Physical, Technical, Data, and People Security) o Produce executive-level technical presentation slides for senior management and boards of directors of MSSP clients. o Review technical and operational reports prepared by SOC analysts. o Monitor SOC client onboarding processes to ensure compliance with organizational standards and regulations. o Produce brand monitoring and dark web monitoring reports for clients' senior management. • Project Oversight: o Track and monitor the progress of all assigned client projects, ensuring timely completion of project tasks and deliverables. o Act as the primary client liaison for project clients and/or SOC clients, ensuring effective communication and client satisfaction. • Team Leadership and Development: o Lead, train, and mentor new professionals within the SOC and security compliance team, fostering a culture of continuous learning and improvement. o Provide guidance and support to team members, ensuring high performance and professional growth. Qualifications: • Bachelor's degree in Information Security, Computer Science, or a related field. Advanced degree preferred. • Minimum of 6-10 years of experience in cyber security, information security, or a related field, with a focus on audits, compliance, and SOC management. • Proven experience in leading and managing security compliance audits and reviews. • Compulsory : Must have a strong understanding of regulatory standards such as Central Bank's RMiT, Securities Commission's Guideline on Technology Risk Management, PCI DSS, SWIFT, ISO 27001, Security Operations Maturity Assessment, SOC Compliance as per NIST, PAYNET Third Party Acquirer’s Compliance Requirements, and PAYMENT Cyber Resilience Audit Requirements and have performed and lead compliance audits based these requirements. • Compulsory : Must have thorough understanding in the following technologies : Log Rhythm, SPLUNK, Stellar Cyber, Archsight, Cylance, Crowdstrike, Microsoft Defender, SOAR, UEBA • Excellent written and spoken English. • Excellent project management and client relationship skills. • Must have global clients exposure covering regions of Asia, Middle East, Africa, Europe.