SOC and Security Compliance Sr Manager

Job Title: SOC and Security Compliance Sr Manager Job Description: The SOC and Security Compliance Sr Manager’s role involves overseeing and managing comprehensive cyber security and information security audits, reviews, and compliance activities within client environments. Extensive experience and expertise are essential for guiding the SOC team and ensuring adherence to best business practices and regulatory standards. The role includes leading and mentoring a team of professionals, managing multiple client projects, and maintaining the highest standards of confidentiality and security. Key Responsibilities: Leadership and Strategy: oLead the development and execution of detailed cyber security and information security audits, policy and procedure reviews, and gap analysis for clients. oDevelop comprehensive audit plans and strategies to ensure thorough and effective audits and reviews. oProvide strategic guidance to clients on best practices for security compliance and risk management. oLead disaster recovery exercises and cyber attach counter measures oIdentify ICT security risks oIdentify and manage ICT Network security risks Audit Management: oOversee the execution of audit activities, including evidence review and analysis, ensuring accurate and appropriate conclusions are drawn. oDraft high-quality reports that document findings and recommended actions in accordance with departmental and industry standards. oCorrelate results from IT assessments/audits into actionable recommendations based on best business practices and regulatory standards. oConduct compliance audits in accordance with, but not limited to, PCI DSS, SWIFT, ISO 27001:2022, Security Operations Maturity Assessment, SOC Compliance as per NIST, PAYNET Third Party Acquirer’s Compliance Requirements, and PAYMENT Cyber Resilience Audit Requirements. SOC Compliance and Operations: oPerform internal reviews to ensure that the Security Operations Centre (SOC) complies with internal policies and procedures. oOversee the following areas of SOC review: SOC Operations Management SOC Technology Operation SOC Tool Functionality and Operation Event Analysis and Response Procedures SOC Security Management (Physical, Technical, Data, and People Security) oProduce executive-level technical presentation slides for senior management and boards of directors of MSSP clients. oReview technical and operational reports prepared by SOC analysts. oMonitor SOC client onboarding processes to ensure compliance with organizational standards and regulations. oProduce brand monitoring and dark web monitoring reports for clients' senior management. Project Oversight: oTrack and monitor the progress of all assigned client projects, ensuring timely completion of project tasks and deliverables. oAct as the primary client liaison for project clients and/or SOC clients, ensuring effective communication and client satisfaction. Team Leadership and Development: oLead, train, and mentor new professionals within the SOC and security compliance team, fostering a culture of continuous learning and improvement. oProvide guidance and support to team members, ensuring high performance and professional growth. Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field. Advanced degree preferred. Minimum of 6-10 years of experience in cyber security, information security, or a related field, with a focus on audits, compliance, and SOC management. Proven experience in leading and managing security compliance audits and reviews. Compulsory : Must have a strong understanding of regulatory standards such as Central Bank's RMiT, Securities Commission's Guideline on Technology Risk Management, PCI DSS, SWIFT, ISO 27001, Security Operations Maturity Assessment, SOC Compliance as per NIST, PAYNET Third Party Acquirer’s Compliance Requirements, and PAYMENT Cyber Resilience Audit Requirements and have performed and lead compliance audits based these requirements.  The ideal candidate should have a proven track record of leading complex compliance audits, developing detailed audit strategies, and implementing security measures in alignment with regulatory standards. Compulsory : Must have thorough understanding in the following technologies : Log Rhythm, SPLUNK, Stellar Cyber, Archsight, Cylance, Crowdstrike, Microsoft Defender, SOAR, UEBA Excellent written and spoken English. Excellent project management and client relationship skills. Must have global clients exposure covering regions of Asia, Middle East, Africa, Europe. Advanced Leadership and Technical Mentoring: The Senior Manager will play a key role in leading, training, and mentoring the SOC and security compliance team. This involves not only possessing advanced technical knowledge but also having the leadership capability to foster a culture of continuous improvement and high performance. Expertise in cybersecurity frameworks