Team Lead, CSOC

Описание вакансии

Who we are:

For over 25 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, eDiscovery, and analytics solutions. We securely capture and preserve the communications data of the world’s most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.

Though we offer competitive compensation and benefits and all the other perks one would expect from an established company, we are not your typical technology company. Global Relay is a career-building company. A place for big ideas. New challenges. Groundbreaking innovation. It’s a place where you can genuinely make an impact – and be recognized for it.

We believe great businesses thrive on diversity, inclusion, and the contributions of all employees. To that end, we recruit candidates from different backgrounds and foster a work environment that encourages employees to collaborate and learn from each other, completely free of barriers.

Your role:

The Information Security Team Lead for Cyber Security Operations Center (CSOC) oversees front-line defenses activities and leads a team of Cyber Security Specialists. The individual provides technical expertise for the Cyber Security Operations Center activities, communicates company goals, policies, requirements, and deadlines to the team, motivates team members, assesses performance, supports management, including hiring and training, team performance, and communicates concerns to management and team members.

The role serves as the primary point of contact and escalation for security events and incidents, ensuring timely detection, analysis and response to threats. The ideal candidate will operate security technologies, coordinate with the Cyber Engineering team on escalations and support the continuous improvement of CSOC processes.

Your responsibilities:

• Perform any subset of the duties and responsibilities listed for the Cyber Security Specialist role and serve as escalation point for CSOC.
• Provide quality escalated customer service, including effectively handling Global Relay employee complaints.
• Act as the first line of defense lead, supervising daily CSOC activities and mentoring analysts during security investigations and incident response.
• Serve as the main escalation point for Cyber Security Specialists for complex alerts, suspicious activity and high-priority incidents.
• Coordinate shift handovers and ensure documentation and continuity across CSOC operations Globally.
• Operate and monitor security tools and technologies including SIEM, EDR, IDS/IPS, threat intel, vulnerability management.
• Ensure tools are tuned and optimized in collaboration with Cyber Engineering team.
• Develop and document playbooks and escalation procedures to improve Cyber Security Operations Center efficiency and maturity.
• Support Cyber Security Manager to develop dashboards and reports for security KPIs, threat metrics and incident response metrics.
• Assist with Global Relay security audits.
• Assist with the enforcement of security policies.
• Participate in security awareness initiatives.
• Administer firewall rule changes, patches, and updates aligned with the change management process.
• Assist with the team’s hiring processes and new team member training.
• Conduct team meetings to update members on best practices and continuing expectations.
• Provide encouragement to team members, including identifying areas for additional training or skills development.
• Answer team member questions, help with team member problems, and oversee team member work for quality and guideline compliance.
• Communicate deadlines and goals to team members.
• Develop strategies to promote team member adherence to company regulations and performance goals.
• Generate and share comprehensive and detailed reports about team performance, mission-related objectives, and deadlines.
• Perform annual individual performance appraisals (IPAs) for team members.
• Approve team members’ time off requests.

About you:

• 2-5 years of hands-on experience leading, Security Operations team and strong understanding of information security systems such as firewalls, intrusion detection and prevention implementations, antivirus and anti-malware solutions, SIEM solutions, two-factor and biometric authentication solutions, and server and network device hardening.
• 1-2 years of management experience leading technical teams.
• Proven experience performing analysis of security events to determine root cause and provide resolution.
• Experience handling and escalating security incidents in real time.
• Familiarity with MITRE ATT&CK, ISO 27001, SOC 2, FedRAMP frameworks.
• Certification in one or more security domains, including CISSP.
• Excellent understanding of a wide variety of communication protocols.
• Experience using an internal and external ticketing system for ITIL-based incident, problem and change management.
• Previous experience in troubleshooting day-to-day operational processes such as report generation, data verification, data correlation, etc.
• Excellent verbal, written and documentation skills.
• Knowledge of scripting or automation tools e.g. Python.
• Methodical and creative approach to problem-solving.
• Superior time management and prioritizing ability.
• Strong relationship building skills.
• Leadership and motivational skills.
• Employee training experience.
• Interviewing skills.
• Customer service skills.

Working conditions

• Availability after hours for escalations.
• Must be flexible to working across different time zones including UK, US and Canada.

Compensation:

Global Relay advertises the pay range for this role in compliance with British Columbia’s pay transparency laws. Individual pay rates are determined by evaluating factors such as expertise, skills, education, and professional background.

The range below reflects the expected annual base salary, which is only one element of our comprehensive total rewards package designed to reflect our company pay philosophy, culture and values. We aim to foster an inspiring work environment and support employees' work-life rhythms. We provide a comprehensive extended health benefits program, including virtual healthcare and a wellness allowance. Employees also receive annual allotted vacation days, which increase based on tenure. Other benefits include: Paid sick days, maternity/parental enhancement program, bonus, and an RRSP contribution matching program.

For Vancouver-based employees, we provide a subsidized meal program, courtesy of our talented in-house culinary team!

British Columbia - Base salary range

$110,000—$150,000 CAD

What you can expect:

At Global Relay, there’s no ceiling to what you can achieve. It’s the land of opportunity for the energetic, the intelligent, the driven. You’ll receive the mentoring, coaching, and support you need to reach your career goals. You’ll be part of a culture that breeds creativity and rewards perseverance and hard work. And you’ll be working alongside smart, talented individuals from diverse backgrounds, with complementary knowledge and skills.

Global Relay is an equal-opportunity employer committed to diversity, equity, and inclusion.

We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.

To learn more about our business, culture, and community involvement, visit www.globalrelay.com.