IT Security Incident Preparedness

• As a SOC Manager You will act as a liaison between industry peers, government agencies (including law enforcement) and other specialists
• Utilize commercial intelligence providers to gain insight into existing activities in the hacker and fraudster communities, as well as planned activities and emerging motivations
• Coordinate with the external managed security services provider, to identify and assess IT security incidents
• Advise of significant emerging threats and recommend tactical steps to counteract these threats

The SOC manager will exercise or support the preparedness of various parts of the organization to respond to IT security incidents via the following activities:

• In consultation with the crisis management team, develop and deliver desktop preparedness exercises at the executive committee level, at least annually

IT Security Incident Management

• Develop and maintain the IT security incident response process, including all required supporting materials.
• Implement standard Operating Procedures for the incident handling that helps the analysts guide through triage (order of treating security events) and response procedures
• Develop functional requirements for roles that will be involved in the SOC program
• Work with business units, IT functions and external providers to ensure that the process is mutually understood and agreed on and that responsibilities
• Ensure execution of the incident response process to the resolution of the incident
• Ensure generation, maintenance and protection of required incident records, such as investigator journals
• Organize, participate in and if required chair post incident reviews for presentation to the senior management.
• Support
• Provide overall direction for the SOC and input to overall security strategy
• Management
• Manage resources to include personnel, budget, shift scheduling and technology strategy to meet SLAs
• Establish metrices and KPIs, then delivers reports regularly

Work Arrangements

• Under normal operating conditions, this role will work to the usual organizational policies and norms of the broader team. However, if the SOC manager is notified outside of normal working hours of a potential incident, then the SOC Manager will be expected to perform the role out of hours to the extent required to protect the organization
• The SOC Manager will be expected to ensure that the SOC is suitably equipped to operate out of hours and off-site where desirable

• In-depth experience in security incident management processes and tools
• 5 to 10 years of technology experience, including troubleshooting and performing root cause analysis of complex IT solutions
• Two or more years of demonstrated leadership experience building consensus across IT domains
• Two or more years of demonstrated experience managing a high-performing, cohesive security response team
• Two or more years of experience in working in the manufacturing industry
• Bachelor’s or master’s degree in IT, engineering, business, management or a related field, or equivalent work experience
• Tertiary qualifications in information or IT security, or industry qualifications such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or the equivalent
• High level of English

• In-depth experience in security incident management processes and tools

• Working at the world’s only fully integrated aluminum and leading renewable energy company 
• Diverse, global teams 
• Flexible work environment/home office 
• We provide you the freedom to be creative and to learn from experts 
• Possibility to grow with the company, gain new certificates 
• Attractive benefit package