About Zones Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done. Follow Zones, LLC on Twitter @Zones, and LinkedIn and Facebook.

Position Overview

Flexible to work in different US Time Zones (Eastern, Central, Pacific)

You will play a crucial role in expanding the scope and capabilities of our SOC Managed Services as the Security Operations team lead - Level 3 support and function as a key customer’s team contact while providing an exceptional experience.

Reporting to the Director Of Cyber Security , you will be a key contributor to the ongoing success and continuous development of the wider security and support services team. Show off your proven leadership skills by offering your advice to resolution and by providing a route to resolution based on a firm understanding of operational workflows. All to fulfill our mission of providing an unmatched, white-glove customer experience, best-in-class security outcomes, and precise technical support for a wide variety of products, technologies, and applications to ensure the protection our customers’ asset

Responsibilities:

• Provide World Class Customer Experience and security outcomes for our customers.
• Ensure Customer Service Level Agreements are adhered to and all open requests and incidents are resolved in a timely manner whilst meeting expected quality standards.
• Provide security expertise, through appropriate tasking, for customers during incident responses, including Incident remediation and prevention documentation.
• Manage staffing shifts and team staffing levels to ensure adequate coverage during scheduled operational delivery.
• Identify and drive improvement opportunities relating to customer experience, security value, and internal operational efficiencies.
• Effectively communicate information relating to Customers and operational delivery between shift teams.
• Take ownership of cases escalated by SIEM Analysts (Tier II)
• Initiate the correct procedures to counteract potential threats/vulnerabilities.
• Assist with the development of processes and procedures to improve customer experience, incident response times, analysis of incidents, and overall Security & Support functions.
• Assist the manager of Security Operations Center Services in ensuring that Quality Assurance policies and standards are being adhered to for key processes and Customer interaction.
• Identify coaching and development opportunities for Security and Support Analysts through a variety of methods – from one-to-one coaching to working closely with our Training team to provide bespoke training classes/certifications to fit the needs of the team.
• Day-to-day management of assigned team members, including bi-weekly one-on-one reviews, attendance management, and career-pathing
• Produce daily, weekly, monthly operational metrics

Qualifications

• 8-10 + years of progressive experience in a security consultant, security operations, security engineering role
• At least 2-3 years of experience leading a team
• Strong belief in ownership, from identification, through resolution and validation of Operational issues
• A team player who is willing to participate in the day-to-day activities
• A clear and confident communicator

Required Skills

• At least 5+ years of experience in a SOC Analyst role at a SOC/MXDR or MSSP with L2 experience
• Strong understanding of networking technologies
• Experience with Microsoft and other leading SIEM tools & technologies such as Microsoft Sentinel and M365 Defender, Defender for Identity, Defender for Cloud and Defender for IoT, QRadar, Splunk etc
• Strong understanding of security best practices and incident response procedures
• Experience with deep-threat intelligence
• Strong proficiency with KQL Queries and automation
• Strong verbal and written communication skills
• Strong analytical and problem-solving skills
• Must have Azure security working experience
• Experience with scripting languages such as Python, PowerShell, and JavaScript
• Familiarity with incident response requirements based on NIST guidelines
• Willingness to work in a 24/7 environment
• Experience with techniques utilizing the MITRE ATT&CK framework for incident investigation and threat hunting
• Experience in conducting investigations and identifying malicious activities using techniques such as packet analysis, log analysis, and endpoint forensics

Zones offer a comprehensive Benefits package.

Our employees enjoy a variety of comprehensive benefits, including health Insurance coverage for parents, spouse & children, life insurance, Gratuity, and EOBI. We maintain our unequivocal commitment to and support of equal employment opportunity for all individuals, free from discrimination based on race, colour, ethnicity, religion, national origin, citizenship, marital status, gender, sexual orientation, age, disability, genetic information, or any other basis protected by under the law. At Zones, work is more than a job – it's an exciting career immersed in an inventive, collaborative culture.

At Zones, work is more than a job –with an exciting career with a global team who are client-centric, has a passion for tech, and embraces change and lifelong learning in a collab culture. If you're interested in working on the cutting edge of IT innovation, sales, engineering, operations, administration, and more, Zones is the place for you!