Security Operations Senior Manager

Job Description

● To develop, monitor and manage security solutions in outsourced environment in line with business requirement. ● To articulate the strategies of Security solutions, SOC/CSIRT and edge security systems and manage implementation of needed change in related domains to improve security for MTNIrancell. ● To lead the harmonization of MTNIrancell security controls testing framework and procedures and oversee the phased development and execution of relevant risk mitigation activity in liaison with A&R and ongoing evolution to aid ability to assess the effectiveness of MTNIrancell’s compliance program elements. ● To design and develop the security assurance framework of technology and ensure that security standards are all adhered to as well, monitoring developments within Information. Security to ensure new developments are assessed and potential business impact is measured. ● To improve and enhance existing operational processes to create process efficiency and drive enforcement of Technical Security Standards on all systems and solutions in MTNIrancell. ● To liaise with security architecture and planning department in designing the Cybersecurity engineering roadmap, in addition to configure devices based on their advice, delivering highly-complex secure systems, cyber applications, technical projects and regulatory and risk requirements. ● To lead and manage SOC and CSIRT teams to effectively operate and continually improve security services, including SLA and performance management, security monitoring and incident response process and tools, metrics development, management of process and procedures, recommending security improvements and developing, implementing, and ensuring compliance with all security policies and procedures to support MTNIrancell cyber security program. ● To lead and establish forensics capability, tools and processes to allow complete investigation and root-cause analysis. ● To forecast, plan, develop and review security operations department CAPEX and OPEX budget in alignment with Security Planning and Architecture team and MTNIrancell financial requirements. ● To lead maintenance, optimization and management of IP security solutions and Edge network security solutions including, WAF,IPS/IDS ,SIEM, firewalls, UTMs, VPN, NAC , Dot1x, PAM, Endpoint Protection, etc. to fulfil MTNIrancell cyber security requirements. ● To lead implementation and improvement of security solutions and operational processes based on provided guidance and best practices by planning and architecture team. ● To lead implementation, optimization and administration any required DMZ (Demilitarized Zone) for any internet facing service to protect MTNIrancell internal LAN from untrusted traffic such as the internet. ● To lead implementation and optimization of required security for WIFI access, WIFI controller and WIFI access points. ● To lead implementation and continual improvement of security assurance processes and activities including vulnerability management penetration test, red-teaming and bug bounty programs. ● To verify discovered vulnerabilities according to metrics; leading correlation, collating the information and creating intelligence reports that communicate the results of the analysis to management and related stakeholders (e.g., C-Suite, executives, government decision-makers, security officials). ● To lead implementation and optimization of DDOS protection in edge layer to protect whole services against different types of DDOS attack and mitigate related cyber security risks related to these attacks. ● To improve security visibility by leading implementation of new security monitoring capabilities including Network Traffic Analysis, Database Activity Monitoring, HIDS (Host-based Intrusion Detection System) and NIDS (Network-based Intrusion Detection System).