SOC Lead - Sentinel Experience Required, Security Operations

January 30

Apply Now

Receive Emails with Similar Jobs

Rackspace Technology

WebsiteLinkedInAll Job Openings

Rackspace Technology is a leading provider of managed cloud services, offering a comprehensive range of cloud and application solutions. The company specializes in helping businesses increase efficiency and reliability through cloud adoption, application modernization, and data solutions, leveraging technologies such as AI, machine learning, and next-gen data platforms. They offer a full suite of services including consulting, application modernization, cloud security, and multicloud strategies, tailoring solutions to meet the specific needs of sectors such as healthcare, financial services, and public utilities. Rackspace Technology is known for its expertise in navigating complex cloud environments and providing advanced managed services to optimize performance and ensure compliance.

IT as a Service • Multi-Cloud • Managed Hosting • Managed AWS/Azure/Google Cloud Platform/OpenStack/Alibaba • Managed Private Cloud for VMware/Microsoft/OpenStack

5001 - 10000 employees

Founded 1998

☁️ SaaS

📋 Description

• Rackspace Cyber Defence is our next generation cyber defense and security operations capability that builds on 20+ years of securing customer environments to deliver proactive, risk-based, threat-informed and intelligence-driven security services. • Our purpose is to enable our customers to defend against the evolving threat landscape across on-premises, private cloud, public cloud, and multi-cloud workloads. • Our goal is to go beyond traditional security controls to deliver cloud-native, DevOps-centric, fully integrated 24x7x365 cyber defense capabilities that deliver a proactive, threat-informed, risk-based, intelligence-driven approach to detecting and responding to threats. • Our mission is to help our customers: • Proactively detect and respond to cyber-attacks – 24x7x365. • Defend against new and emerging risks that impact their business. • Reduce their attack surface across private cloud, hybrid cloud, public cloud, and multi-cloud environments. • Reduce their exposure to risks that impact their identity and brand. • Develop operational resilience. • Maintain compliance with legal, regulatory and compliance obligations.

🎯 Requirements

• Should have experience of 14 years in SOC and Security Eng. • Managing a team of first responders, as part of a resolver group (or pod), you will ensure the Customer’s operational and production environment remains secure and any threats are raised and addressed promptly. This can include monitoring at both the network and application level. • Identification of a customer’s critical assets using technical tools and interviews. • Use of, enhancement of, or implementation of new, relevant technology tooling to ensure a customer’s configuration and security policies are enforced. • Use of threat intelligence platforms such as OSINT, to understand the latest threats. Researching and analysing the latest threats to better understand an adversary’s tactics, techniques, and procedures (TTPs). • Automation of security processes and procedures to enhance and streamline monitoring capabilities. • Ensure any reported vulnerabilities are resolved within agreed SLA timeframes. • In-depth knowledge of each Rackspace customer’s environment. • Providing relevant reporting and analysis (including breach root cause analysis, if required) to customers, on an agreed frequency. • Maintain close working relationships with relevant teams and individual key stakeholders, such as incident response and disaster recovery teams as well as information security etc. • May be required to work flexible working hours. • Critical Incident Handling & Closure and Deep investigation and analysis of critical security incidents. • Post-breach forensic incident analysis reporting and Advanced threat hunting. • Assist with customer onboarding – loading of feeds, etc. to Sentinel. • Develop custom dashboards and reporting templates and Develop complex to customer-specific use cases. • Advanced platform administration and Solution recommendations for issues. • Co-ordinate with different teams for issue resolution