Security Operations Center (SOC) Manager

Job Description

We are looking for an experienced security professional to take on the role of Security Operations Center (SOC) Manager at Illuvium. You will be responsible for building our Security Operations Center. The ideal candidate will still maintain strong technical skills whilst also having a prior track record of successfully working within and running a SOC in an organization.

About Illuvium

Illuvium Labs is an independent game development studio based in Sydney, Australia. We develop blockchain based games for the Illuvium DAO. We have developed a strong culture of independence with our team, preferring candidates who can articulate their own vision and goals. We operate almost entirely remotely so each team member designs their own hours and work schedule. In the end all that matters is the delivered product. We hire based on people’s abilities to adapt and change quickly, valuing underlying core abilities above specific skill sets.

Responsibilities

• Design, build, hire, train and manage a team of analysts in the context of a 24/7-running Security Operations Center

• Establish 24/7/365 continuous monitoring of security event feeds

• Establish SLAs and performance metrics for the SOC

• Be the central point of contact for suspected security incident on our systems and their treatment along the whole incident lifecycle

• Partner with our Security Engineers to build the toolchain to provide the SOC the data it needs and with our internal teams to escalate and resolve incidents quickly

Skills and Qualifications

• 7+ years experience in the security domain

• 3+ years of experience in a similar role such as SOC Lead, Level 3 SOC Analyst, Cyber Operations Manager

• Experience in managing a team detecting and responding to incidents in the cloud

• AWS Experience, preferably with services such as Lambda, DynamoDB, AWS Shield, CloudWatch, RDS, EC2, ECS

• Experience with 24/7 incident management and high-pressure environments

• Familiarity with modern, virtual SOC practices (like, but not limited to e.g. SOAR, SIEM, EDR)

• The ability to spot suspicious behavior among a potentially large set of indicators, with a focus on threat actors targeting known crypto vulnerabilities

Preferred Qualifications

• Hands-on experience with Splunk or similar products such as DataDog

• Financial services experience

• A keen interest in blockchain technologies

Location

Remote Friendly