Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last three consecutive years. We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and the first in our space to provide a risk scoring dashboard.
Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood but our prospective clients also struggle to effectively harness technology and build hardened processes.
While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.
SUMMARY
Reporting to the VP of Global SOC Operations, the Sr Manager of APAC SOC Operations is a role with responsibility to lead a team of compromised of SOC and Threat Intelligence staff. Proficio currently has three SOCs and our APAC location operates 24 hours a day with multiple shift conventions, plus offsite staff operating in specific customer environments. Your responsibility is to continuously improve the productivity and quality of output of the SOC, meet customer SLAs, and build a high performing team. As a technical leader, you will also be responsible for interacting with clients to discuss their requirements and issues.
RESPONSIBILITIES
In the portion of this role that oversees our APAC SOC Analyst team:
- Coordinate and lead global strategic initiatives to continuously provide improvements in service delivery to our customers
- Oversee the hiring, development, and training of our team of Security Analysts and Incident Responders
- Oversee SOC processes and review their application to ensure that SOC’s controls, policies, and procedures are operating effectively
- Sets standards and KPIs that align with corporate goals for service delivery and report on agreed metrics
- Communicate with customers on technical and service delivery issues when needed
- Integrate and coordinate with other SOC teams, Device Management, R&D, and Customer Success to streamline service delivery
In the portion of this role that participates in and runs the Threat Detection Department:
- Oversee the direction and output of Use Case Development.
- Assist when needed on development projects, including but not limited to developing and creating new use cases for our base library including documentation, maintain existing base library, and modify alerts in library as required by the current threat landscape.
- Sets standards and KPIs that align with corporate goals for service delivery and report on agreed metrics
In the portion of this role that participates in and runs the Threat Intelligence Department:
- Oversee the direction and output of Threat Intelligence operations.
- Assist in developing and creating relevant and effective processes, procedures, and documentation
- Sets standards and KPIs that align with corporate goals for service delivery and report on agreed metrics
- 5+ years of supervisory experience working in Security Operations Centers - experience working for an MSSP/MDR is desirable
- Strong understanding of security operations, threat hunting methodologies, incident response and architectural dependencies of security technologies
- Experience with Splunk, Elastic, and ServiceNow is desirable
- Experience in developing frameworks for knowledge transfer, training and education
- Credibility advising clients and managing communications throughout the lifecycle of the relationship
- Successful track record as a leader, people manager, communicator and motivator
- Strategic mindset and the capability to plan effectively
- Ability to excel in a fast-paced environment and work under pressure
- Current or past certifications: CISSP, CISM and SANS knowledge would be viewed positively
- Bachelor’s degree in Computer Science, Information Technology or similar field, or equivalent
LOCATION & TRAVEL:
- Position is located in our Singapore SOC
- Position will require some international travel
- Opportunity to work in a progressive organization with structured training and roadmap for success
- Lunches and fun employee activities!
- Experience in one of the hottest IT industries today
Proficio is an EOE employer.
What We Do
Proficio is a world-class Managed Security Service Provider (MSSP) providing managed detection and response solutions, 24×7 security monitoring and advanced data breach prevention services to organizations globally.
Our rapid growth is being fueled by the rise in cloud-based services, the acceptance of the Software-as-a-Service (SaaS) model, and the increasing number of cyber security attacks on businesses, hospitals and government. We have developed proprietary security content and threat intelligence tools to identify and proactively defend against advanced attacks and insider threats. Proficio’s founders are veterans of the security and networking industry who have helped guide multiple companies to successful exits.
Proficio’s customers benefit from the most advanced security monitoring and 24×7 managed security services that until recently were outside the budget of all but the very largest enterprises. Proficio’s ProSOC service offerings include the following:
• 24×7 security event monitoring, alerting, and remediation
• Advanced SIEM correlation analysis
• Protection against complex attacks and insider threats
• Actionable intelligence that enables internal IT teams to effectively and quickly resolve issues
• Threat Intelligence
• Active Defense that blocks targeted attacks in real time 24×7
• Worry-free compliance audits for: PCI, HIPAA, SOX, GLBA, FFIEC, NERC CIP, and FISMA regulations
• Visibility to event logs with easy-to-use web portal, powerful reporting, dashboards, and drill-down analytics
• Full management of security devices including patching, health and performance monitoring, and tuning
• Free 12 month log retention
• Out-of-the-box support for 400+ log sources
• Scalable cloud-based deployment – fast implementation and no software or hardware purchases
• Advanced scanning eliminating vulnerabilities before they can be exploited