Project Role : Security Delivery Practitioner
Project Role Description : Assist in defining requirements, designing and building security components, and testing efforts.
Must have skills : Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 12 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: The SOC Lead is responsible for managing the Security Operations Centre (SOC Preferably Sentinel SIEM Solution) team, ensuring the effective monitoring, detection, and response to security incidents. This role requires a blend of technical expertise, managerial skills, and crisis management capabilities to protect the organization's information assets and maintain a robust security posture. Roles & Responsibilities: - Act as an incident commander and correlate incidents (IT / OT) to provide investigation direction to L2 SOC. - Manage critical/high severity and sophisticated cyber incidents. - Ensure quality and speed of incident response by L1/ L2 SOC. - Develop and execute service improvement plans. - Present SOC service performance to Customer SOC and GRC Manager Monthly. - Provide inputs to the Customer security engineering manager on issues, new development, testing, and implementation for: - SOAR Playbooks - Security analytics detection use cases - Contribute to further development, maintenance, and standardization of SOC processes, policies, and procedures. - Join cross-partner council meetings to highlight resolution delays by incumbent partners. - Participate in breach and attack simulation exercises and drive remediation. - Define paths for professional advancement (technical and soft skills). - Execute all the responsibilities on a 24/7 basis. - Expected to be an SME in Security Information and Event Management (SIEM) - Collaborate and manage the team to perform effectively - Responsible for team decisions and ensuring adherence to security standards - Engage with multiple teams and contribute to key security decisions - Expected to provide solutions to security problems that apply across multiple teams - Conduct security assessments and vulnerability testing - Develop and implement security policies and procedures - Provide guidance and support to junior team members Professional & Technical Skills: 1. Security Monitoring and Incident Response: - Oversee the continuous monitoring of security events and alerts. - Lead the investigation and response to security incidents, including root cause analysis and remediation. - Develop and maintain incident response playbooks and procedures. 2. Threat Intelligence and Analysis: - Analyze threat intelligence to identify potential security threats and vulnerabilities. - Implement threat hunting activities to proactively identify and mitigate risks. 3. Security Tools and Technologies: - Manage and optimize security tools and technologies, such as SIEM, IDS/IPS, firewalls, and endpoint protection. - Ensure the proper configuration and tuning of security tools to enhance detection and response capabilities. 4. Vulnerability Management: - Oversee vulnerability assessments and penetration testing activities. - Coordinate with IT and development teams to remediate identified vulnerabilities. Managerial Skills: 1. Team Leadership and Development: - Lead and mentor the SOC team, providing guidance and support to enhance their skills and performance. - Conduct regular performance reviews and provide feedback to team members. - Foster a collaborative and positive team environment. 2. Operational Management: - Develop and implement SOC policies, procedures, and standards. - Ensure the SOC operates efficiently and effectively, meeting established SLAs and KPIs. - Manage the SOC budget and resources, including staffing, tools, and training. 3. Collaboration and Communication: - Collaborate with other departments, such as IT, legal, and compliance, to ensure a coordinated approach to security. - Communicate security incidents and risks to senior management and stakeholders. - Prepare and present regular reports on SOC activities and performance. Crisis Management Skills: 1. Incident Management: - Lead the response to major security incidents, coordinating with internal and external stakeholders. - Develop and execute incident response plans, ensuring timely and effective resolution. - Conduct post-incident reviews and implement lessons learned to improve future response efforts. 2. Business Continuity and Disaster Recovery: - Ensure the SOC is prepared to handle security incidents that impact business operations. - Collaborate with the business continuity team to develop and test disaster recovery plans. - Maintain up-to-date knowledge of industry best practices and emerging threats. 3. Risk Management: - Identify and assess security risks, developing strategies to mitigate them. - Ensure compliance with relevant regulations and standards, such as GDPR, HIPAA, and ISO 27001. - Conduct regular risk assessments and security audits. - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM) - Experience with security incident response and threat intelligence - Strong understanding of network security principles and technologies - Knowledge of security frameworks and standards (e.g., ISO 27001, NIST) - Experience with security tools and technologies (e.g., SIEM, IDS/IPS) - Good To Have Skills: Experience with cloud security and DevSecOps practices - Familiarity with regulatory compliance requirements (e.g., GDPR, HIPAA) - Experience with security risk assessment and management Additional Information: Qualifications: - Bachelor's degree in Computer Science, Information Security, or a related field. - Relevant certifications, such as CISSP, CISM, CEH, or GIAC. - 13 to 17 years of experience in information security, with at least 3 years in a SOC leadership role. - Strong technical knowledge of security tools, technologies, and best practices. - Excellent leadership, communication, and interpersonal skills. - Proven experience in incident response, crisis management, and risk assessment. - Ability to work under pressure and manage multiple priorities. Preferred Skills: - Experience with cloud security and DevSecOps practices. - Knowledge of regulatory requirements and industry standards. - Familiarity with advanced threat detection and response techniques.

15 years full time education

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with 750,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We are uniquely able to deliver tangible outcomes because of our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song. These capabilities, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities. Visit us at www.accenture.com

Equal Employment Opportunity Statement

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

Accenture is committed to providing veteran employment opportunities to our service men and women.