Role Proficiency:

Provide management of a specific SIEM or EDR technology for global customers; ensuring the platform is maintained and functioning as expected. Ensure the service level provided is satisfactorily and in line with contractual arrangements.

Outcomes:

Perform additional investigation based on Health checks undertaken on multiple customers for the specified SIEM or EDR type. Escalate issues observed accordingly to a team member if appropriate identifying problematic areas with the platform. Assist with service requests for platform types such as access requests as well as more targeted requests for specific modules on platform such as dashboard creation and query support. Investigate larger issues to ensure optimal service for internal and external stakeholders. Provide assistance with maintenance activities to help improve understanding of the architecture of platforms supported as well as self-study building proficiency for toolsets supported. Generate relevant reporting as required for platforms being supported on a regular basis; ensuring internal and external reporting requirements are met. Ensure in-life requests are appropriately delivered based on the contractual arrangements with the customer to guarantee the appropriate service level is being provided. Ensure requests are actioned in a timely manner within this role and junior roles to ensure effective maintenance and management of the customer platform. Provide support where required to other platform engineers to help them ensure that requests and issues are rectified focusing on the impact to the customer. Providing supervision and guidance to junior members of the team.

Measures of Outcomes:

Percent of Adherence to processes and methodologiesa.Percent of adherence to SLAs for in- life ticketing processesb.Percent of adherence to workflows and completeness of audit trail for all activities. Productivity score maintaineda.Number of issues identified early in case of issues delivering tasks or workload.b.Number of issues with effective evidence provided for escalations during triage. Number of opportunities to enhance change documentation to ensure processes remain relevant for the broader team. Number of relevant skill related training and development activities undertaken; evidenced by certification. Number of opportunities identified to and improve; helping to reduce false positives

Outputs Expected:

Technical Expertise:

Show comprehension and experience in the specific SIEM or EDR platform that Platform Lead is responsible for. Comfortable with and an awareness of platform types across the range of supported customers Using technology
identify and implement technical solutions to issues with queries/rules/dashboards/data feeds Provide support to Junior members.

Platform Management – Incident and Requests:

Ensure team members are providing accurate updates to appropriate Service and Change Requests. Ensure an audit trail is preserved and SLAs are achieved. Take the lead in identifying issues within the specified platform type or its supporting infrastructure. Ensure contractual compliance with Statement of Work Proactively identify issues
with behavioural analysis/patterns along with suggestions for resolution Provide support to Junior members.

Stakeholder Focus:

Ensure relevant reporting metrics of customer information provided in a timely manner and engage with customer/TAM/Project team where required. Ensure customer specific processes are being followed. Undertake mandatory and proactive learning and development opportunities.

Skill Examples:

Good communication skills Skill in being prepared to undertake background check/validation ensuring integrity. Ability to work unsupervised with the assigned SIEM or EDR technologies Ability to manage a team of staff in a technical security environment Able to work with multiple querying languages Aptitude in working with querying data and the role of a SIEM/EDR Ability to show analytical skills working across multiple technologies and customers.

Knowledge Examples:

Knowledge Examples

Experience working with Security Operations and/or EDR/SIEM Platform Management roles. A deep understanding of the workings of supported toolsets and technologies Knowledge of IT Infrastructure and basic networking concepts Knowledge of creation of detection rules for SIEM/EDR as well as improving and enhancing. Understanding of ISMS Desirable: Certifications in IT infrastructure / SIEM / EDR / Ethical Hacking Desirable: Academic qualifications and/or relevant work experience in lieu of qualification.

Additional Comments:

Job Title: Governance Risk, and Compliance (GRC) Specialist Job Type: Full-time Job Summary: We are seeking a highly skilled and experienced Governance Risk, and Compliance (GRC) Specialist to join our team. The ideal candidate will be responsible for designing, developing, and implementing security compliance controls and solutions, as well as maintaining information security policies, standards, procedures, and guidelines. This role requires strong analytical skills, advanced written and verbal communication skills, and extensive knowledge of IT regulatory control frameworks and information security standards. Key Responsibilities: Design, develop, and implement security compliance controls and solutions. Develop and maintain information security policies, standards, procedures, and guidelines in accordance with the overarching Information Security Risk Framework. Create or assess a Business Continuity Plan or Disaster Recovery Plan, including making recommendations based on best practices. Design and implement a risk management program, including but not limited to, risk intake, risk reviews, and risk registers. Develop and report security risk and compliance metrics (KPIs) for the enterprise, departments, processes, and individual assets. Implement and enforce data management, including data classification, retention, and privacy. Conduct organizational audits to ensure policies are enforced regarding processes, assets, tools, and data. Support ongoing compliance activities and monitoring efforts across applicable Regulations and Standards (e.g., SOX, GDPR, SOC2, ISO, etc.). Possess extensive knowledge and understanding of IT regulatory control frameworks (ITIL, COBIT, etc.). Possess strong working knowledge of information security standards and frameworks (NIST, ISO, SOC, etc.). Utilize tools such as OneTrust, Bitsight, BeyondTrust, AuditBoard, Archer, and JIRA. Qualifications: Strong analytical skills. Advanced written and verbal communication skills. Extensive knowledge and understanding of IT regulatory control frameworks (ITIL, COBIT, etc.). Strong working knowledge of information security standards and frameworks (NIST, ISO, SOC, etc.). Tools: OneTrust, Bitsight, BeyondTrust, AuditBoard, Archer, JIRA.