ManagedXDR Enhanced Senior Advisor (Team Leader)

Principal Responsibilities

• Continuously exercise ManagedXDR Enhanced processes and utilize ManagedXDR Enhanced tools to maintain familiarity and identify improvement opportunities. 
• Participate as an SME in strategy setting of the ManagedXDR Enhanced team to confirm if new suggestions for service will work and help identify gaps as ManagedXDR Enhanced capability evolves. 
• Define, implement, improve ManagedXDR Enhanced team processes and procedures ensuring a unified delivery. 
• Represent ManagedXDR Enhanced team in Critical Situations, pre-sales activities, marketing events (internal/external summits, webinars, workshops), customer meetings, etc. 
• Work with ManagedXDR Enhanced leadership for interviewing new security analysts’ candidates, acts as a mentor, working side by-side with other personnel in an advisory, support and training role 
• Define, collect, and monitor appropriate ManagedXDR Enhanced quality assurance/SLO metrics for reporting to senior leadership and tracking team performance 

Skills 

• Ability to write scripts to automate new and existing tasks. 
• Strong technical communication skills, both written and verbal.
• Attention to detail and great organizational and time management skills.
• Excellent problem-solving skills that would allow for the ability to diagnose and troubleshoot technical issues.
• Client-focused with a passion for delivering service excellence.
• Strong sense of urgency and ability to work under pressure.
• Possess high standard of integrity and confidentiality.
• Great leadership and coaching skills.
• Communication - The ability to make themselves well understood by others through the capacity to clearly and convincing express his point of view, to actively listen and control the conversation flow).
• Risk assessment and decision making -The ability to analyze within reason facts and situations, decision making, evaluating consequences of others and undertake acceptable risks.
• Influencing - the ability to convince others of his/her opinions and determine them to follow.
• Task management and planning - The ability to effectively set an adequate action plan for himself/herself and for others, in order to reach a goal.

Education and Experience

• 5-8+ years of relevant experience or equivalent combination of education and work experience.
• Completion of a Bachelor’s degree or equivalent program in Computer Science, Network Security, Information Security or other applicable field and 5+ years of work experience in the field.

Significant experience with and expert understanding of: 

• Two (2) or more of the following operating systems (Windows, Linux, Mac OS) at a filesystem level.
• Fundamental Internet protocols, services and technologies (e.g., HTTP/HTTPS, DNS, SMTP, SSH, LDAP, TCP/IP, UDP, ICMP, JSON, REST, etc.).
• Common security controls (e.g., firewalls, proxies, IDS/IPS, WAF, etc.). 

Experience with and strong understanding of: 

• Performing both endpoint and network-based investigations.
• Reviewing logs to identify evidence of past intrusions.
• Pivot off indicators within networks to identify the scope and breadth of attacks.
• Malware and exploit kit functionality.
• Operating system and application exploits.
• Lateral movement, living-off-the-land, and persistence establishment mechanisms.
• Detection of anomalous system activity.
• Threat hunting methodologies.
• Incident response and incident handling processes.

Secureworks is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.