Security Operations Center Team Lead (remote work)

작업 내용

Franke is a world leading provider of products and solutions for residential kitchens and bathrooms, professional foodservice, coffee preparation and semi-/public washrooms established in 40 countries. At Franke, we want to make everything we do wonderful - from what we manufacture and design, to the way we deal with our partners, customers and each other.

Franke Cyber Resilience Services is a newly created corporate function aimed at strengthening the cyber security and cyber resilience of the Franke Group. By joining us, you will be exposed to the latest security solutions from top notch vendors and managed service providers. In our scope, we define protection strategies for a wide range of technologies including cloud environments, IoT devices, and automated manufacturing environments within Industry 4.0.

As one of the early members of the team, you will have the opportunity to set strategy and define the future roadmap of the function. Furthermore, you will be in a privileged position for internal promotion and growth.

We are seeking a talented and technically savvy individual to join our global team. As Security Operations Center Team Lead you will shape and implement the strategy aimed at protecting Franke assets from existing and upcoming vulnerabilities as well as play a pivotal role on the security incident response.

The role is based in either Peschiera del Garda or Fabriano, Italy or Barcelona, Spain or Warsaw, Poland. You will report directly to the Chief Information Security Officer in Switzerland giving you top management visibility since the very first day. Since this is an opportunity for remote work, the location is flexible. Occasional trips to the office in one of the Franke office locations will be required.

• Drive incident identification and response strategies based on a deep technical expertise and in close collaboration with the outsourced Security Operations Center
  
  

• Defend Franke against information security incidents, as well as identify, analyze, investigate, communicate, and contain complex incidents that reach L3
  
  

• Operate and optimize the vulnerability management program for IT and digital assets and prioritize mitigations based on business risk exposure in collaboration with our outsourcing partner
  
  

• Be the single point of contact for technical questions related to vulnerabilities and incidents.
  
  

• Research emerging threats and vulnerabilities to aid in the identification of incidents
  
  

• A motivated, reliable, committed, trustworthy, quality-oriented and self-driven professional
  
  

• Able to think strategically and comfortable defining and implementing optimal processes end to end based on past experience
  
  

• Able to work and make sound decisions with little overseeing
  
  

• Able to think out of the box and propose creative solutions to complex technical problems
  
  

• Experienced in working with multiple international stakeholders to produce innovative and creative solutions covering both, business and IT users
  
  

• Interested in occasional business travel (<10%) as soon as travelling is safe and respecting the Covid regulations
  
  

• Experienced in managing 3rd party outsourcing partners
  
  

• Competent in people management involving local and nearshore resources
  
  

• Master’s degree in Computer Sciences, Telecommunications, Electrical Engineering or equivalent
  
  

• Certificates: CEH, LPT, CPT, CEPT, CRTP or equivalent penetration testing related certificates
  
  

• A minimum of 5 year of proven working experience in a similar position, especially on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
  
  

• Hands-on experience with the security alerting and security management of three or more of the following technologies and tools:
  
  

  • Office 365 and Microsoft Defender for Office 365
    
    

  • Enterprise Mobility + Security E3 suite of tools
    
    

  • Active Directory, Windows and Linux Server
    
    

  • Virtualization technologies such as ESXi
    
    

  • xDR technologies such as EDRs, such as Microsoft Defender for Endpoint, and managed third party NDRs
    
    

  • Network devices, secure gateways and firewalls
    
    

  
  

• Hands-on experience managing vulnerability management and SIEM tools such as Qualys and Azure Sentinel.
  
  

• Fluent in English, both oral and written