Senior Specialist : Cyber Defense SIEM and CSOC SME Engineer

• Serving as the Subject Matter Expert (SME) for Cyber SIEM and CSOC Solutions.
• Leading deployments for Cyber Defence Solutions and Technology.
• Coordinating Cybersecurity Teams in case of a Market Breach, especially incidents impacting multiple markets.
• Providing Cyber defense guidance to MPA, markets, and stakeholders.
• Acting as the Single Point of Contact (SPOC) for the Cloud-based Security Datalake and ensuring security logs from all markets are updated, guiding and managing L1 Cyber resources.
• Leading MPA and markets Cyber teams in cyber incident detection and response.
• Supporting the Integration of Systems into SIEM and maintaining them.
• Developing use cases for SIEM analysis.
• Creating Alerts, Reports, and Dashboards for the SIEM.
• Providing support on Cyber Defense tools customization and development for data feeds.
• Deploying and integrating threat intelligence.
• Conducting Purple team gap analysis sessions.
• Optimizing Cyber Defense Systems performance and resource allocation.
• Acting as an operational team lead in the configuration, management, and upgrade of a wide variety of other security products/appliances.
• Troubleshooting and remediating Level 1/2/3 issues impacting Cybersecurity operations.
• Facilitating the implementation, management, and optimization of Cyber Security policies, standards, and procedures.
• Driving standards of excellence to achieve the Cyber Security strategy.
• Improving the Cybersecurity posture of the company through several initiatives, including but not limited to Cyber Security Baselines.

• Degree in Electrical Engineering/Computer Science/Information Technology or an equivalent technology-related degree.
• At least two professional Cyber Qualifications: CISSP/CISM/CISA.
• Advanced competencies in Network Security: CCNP or CCIE (Security).
• Advanced competencies in Microsoft, Linux, or Unix Operating Systems administration.
• Advanced competencies and experience in Information Security Technologies.
• Over 5 years of experience in Cyber Security with Security logging and Monitoring Tools for Cloud and On-prem systems, including SIEM, EDR, and Threat Hunting tools.
• Over 2 years of experience in CyberSecurity with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, Security Scanning tools.
• 1-year focused Security experience in Incident Management, Intrusion Analysis, Network troubleshooting, or Reverse Engineering.
• Experience in the design, delivery, and support of Information Security solutions for customers will be an added advantage.
• Good communication skills and a team player.
• Experience in the use of security tools.
• Project management skills and proven task execution (getting things done).
• Superior report writing skills.
• Analytical Thinking.

• Coordinate optimization of the Operational Monitoring cyber security baselines (CSB) controls across all MPA-relevant business areas and processes
• Optimize and maintain Cyber Security controls and requirements across
• Ensure all third-party systems’ products, services and projects are compliant to the minimum security requirements and Cyber Security Baselines (CSBs)
• Responsible for the set-up, execution, and maintenance of the security incident management and coordination process in conjunction with incident management capabilities
• Management of the vulnerability scanning, patching and penetration tests and tracking resolution of vulnerabilities and patches in MPA systems, per the relevant MPA security policies
• Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings, and ensure all audit findings in these systems are closed within agreed timelines

• Ensure compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains
• Responsible for monitoring of compliance of the Cyber security managed services contract, to ensure it is within agreed SLA
• Support for validation, timely completion and accuracy of Technology audit checklists and user access rights reviews
• Coordination of analytical processes and incident response measures
• Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems

• Manage all the Cyber security OPEX budgets and planning, in alignment with the company and Group strategy
• Manage the Cyber security subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations
• Skills development within Cyber security department
• Performance Management of the Cyber security team
• Provide input to Security Policies and requirements on Technology security methods and technologies
• Support Implementation and enforcement of the MPA cyber code across all users
• Provide regular and accurate management reporting on Cyber security service performance

• Maintain the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements
• Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
• Set-up of analytics framework and tools
• Drive continuous improvement through simplification of key cyber security processes
• Communication
• Drive internal and third-party service review meetings covering performance, service improvements, quality and processes
• Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
• Support information security awareness and training to all MPA users and third-party vendors
• Driving incident planned and emergency communication processes to both internal and external audiences

ExecutivePlacements.com