Deskripsi Pekerjaan
Are you a visionary leader passionate about cybersecurity and ready to make a significant impact? Accenture, a global leader in professional services, is seeking a highly skilled and experienced Security Operations (SIEM) Lead to join our dynamic Managed Services team in Cebu City. This is an unparalleled opportunity to lead a critical function, safeguarding our clients' digital assets against sophisticated cyber threats.
In this pivotal role, you will be at the forefront of managing and optimizing Security Information and Event Management (SIEM) platforms. You'll lead a talented team of security analysts, driving the evolution of our threat detection, incident response, and vulnerability management capabilities for a diverse portfolio of managed services clients. Your expertise will directly contribute to enhancing our clients' security posture, ensuring resilience in an ever-evolving threat landscape.
We are looking for someone with a deep understanding of security operations best practices, a proven track record in SIEM architecture and administration (e.g., Splunk, Microsoft Sentinel, IBM QRadar), and exceptional leadership skills. If you thrive in a fast-paced environment, possess a strategic mindset, and are committed to fostering a culture of continuous improvement, then Accenture is the place for you to accelerate your career and shape the future of cybersecurity.
Join Accenture and become part of a global community that values innovation, collaboration, and continuous learning. We offer a stimulating work environment, opportunities for professional development, and the chance to work with cutting-edge technologies. Take the next step in your career and help us deliver exceptional security services that keep businesses safe and secure.
Tanggung Jawab
- Lead, mentor, and develop a high-performing team of security analysts and engineers within the Security Operations Center (SOC) focused on SIEM platforms.
- Oversee the design, implementation, configuration, and optimization of SIEM solutions (e.g., Splunk, Azure Sentinel, IBM QRadar) for managed services clients.
- Drive the continuous improvement of threat detection, incident response, and security monitoring processes, ensuring alignment with industry best practices and client requirements.
- Act as a primary point of contact for clients regarding SIEM operations, providing expert guidance and strategic recommendations on security posture.
- Perform advanced log analysis, threat hunting, and security investigations to identify, analyze, and mitigate complex cyber threats effectively.
- Develop and maintain comprehensive security metrics, dashboards, and reporting to provide actionable insights into the security posture of client environments.
- Collaborate cross-functionally with other security teams (e.g., GRC, Vulnerability Management) to ensure holistic and comprehensive security coverage.
- Stay abreast of emerging cybersecurity threats, technologies, and regulatory changes, incorporating relevant intelligence into operational strategies and platform enhancements.
Kualifikasi
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a closely related technical field.
- Minimum of 7+ years of progressive experience in cybersecurity, with at least 3 years in a leadership or senior specialist role focused on Security Operations and SIEM.
- Extensive hands-on experience with major SIEM platforms such as Splunk, Microsoft Azure Sentinel, IBM QRadar, or similar leading security analytics solutions.
- Proven ability to lead, manage, and motivate a team of security professionals, fostering growth, collaboration, and high performance.
- Strong understanding of incident response methodologies, threat intelligence, vulnerability management, and common attack frameworks (e.g., MITRE ATT&CK).
- Excellent analytical, problem-solving, and critical-thinking skills, with the ability to articulate complex security concepts to technical and non-technical audiences.
- Relevant industry certifications preferred (e.g., CISSP, CISM, GCIH, GCIA, Splunk Certified Admin/Architect, Microsoft SC-200/SC-900).
- Prior experience working in a Managed Security Services Provider (MSSP) or a similar client-facing professional services environment is highly desirable.