View Advert MiHCM
Back to all jobs
Career Portal Details
Lead - Cyber Security Incident Handler
Location
Akbar Brothers - 1st Floor
Closing Date
05/31/2025
Description
  • Experience in working with Incident Manager Role and Security Operations Center (SOC) operation or similar role.
  • Overseeing the incident management process and team members involved in resolving the incident.
  • Conduct root cause analysis and recommend corrective actions.
  • Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
  • Support the cybersecurity incident response efforts.
  • Responding to a reported service incident, identifying the cause, and initiating the incident management process.
  • Prioritizing incidents according to their urgency and influence on the business.
  • Collaborating with the incident management team to ensure that all protocols are diligently followed.
  • Logging all incidents and their resolution to see if there are recurring malfunctions.
  • Adjusting the incident management process as required to ensure its effectiveness.
  • Communicating with upper management if major issues are found in the Incidents.
  • Managing the incident team members by re-assigning workloads and re-scheduling non-urgent tasks.
  • Collaborate with stakeholders and security providers during incidents.
  • Analyze threat actor tactics and implement security solutions.
  • Drive continuous improvement in threat intelligence and response playbooks.
  • Manage and train the incident management team and ensure 24/7 SOC Operation.
  • Conduct phishing campaigns and cyber drills.
  • Develop and improve security use cases and SOC performance metrics.
  • Stay updated on security trends and recommend enhancements.
  • Facilitate communication between stakeholders for effective incident management.
  • Research security trends and share cost-effective solutions.
  • Support proactive threat hunting and analysis.
  • Coordination of monitoring related activities and working with MSSP on SIEM related finetuning
Entry Requirements
  • Minimum of 3 to 5 years’ experience with Incident management, having security operations experience is an advantage.
  • BSc in Cyber Security, Information Security, IT, or Engineering and Professional: CEH, CCNA, RCHSA, CompTIA Cysa+, CHFI, or equivalent.
  • Knowledge of EDR/XDR, spam Filter, IPS, WAF. Working on the Azure Sentinel is adding advantage.
Powered By MiHCM      |      ©2021 All Rights reserved
Key Skills
x