Managed Security Services (Mss) Security Delivery Manager (Sentinel)
Job Description
Accenture Security helps organizations prepare, protect, detect, respond to, and recover, at all points of the security lifecycle. We hire the very best security talent and arm them with the coolest tools and latest tech so they can help our clients build resilience as we create integrated, customized turnkey solutions. We blend risk strategy, digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle.
The Accenture Security practice is a unique group of people passionate about Information Security. We are currently looking for a SOC - Delivery manager.
Job Summary:
The primary objective of the SOC delivery manager is to manage SOC operations for our external clients, in transition of service and/or in the run-phase of the service. This role is responsible to drive the day-to-day SOC operations to defend corporate networks from advanced and targeted attacks by providing threat monitoring and cyber defense services. Work with SOC Operations team with a focus on threat identification, incident response, cyber threat intelligence infusion, and mitigations—to ensure defensive resiliency.
Key Responsibilities:
- Act as service delivery manager and Subject Matter Expert (SME) to the SOC team during the run phase of the service
- Providing Subject matter expertise and guidance on Sentinel design, implementation, log sourcing integration, UseCase development and trouble shooting
- Providing Subject matter expertise and guidance on incident response management and coordinating efforts across client and Accenture teams
- Compliance to SOC Processes
- Managing Escalations, managing Daily Operations, resources, incident management and
- Reporting and review of contractual metrics – KPI/SLA
- Implement & support security for client environments including implementation of technological solutions.
- Collaborate with clients for consistent delivery and proactive management of delivery risks
- Participate in business development activities (including responses to RFP/I/Q)
- Champion continous service improvement and drive automation efforts.
- Contribute to people-related activities, including development, coaching, recruiting, training, and retention. Foster a culture of learning, continuous improvement.
- Required to travel to client site 2-3 days a week.
Qualifications
Job Requirements:
- Bachelor or college degree in Computer Science, Telecommunications or Information Security or equivalent work experience
- At least 10 years of experience an information/cyber security role focused on security monitoring and analysis.
- Knowledge of IT security solutions (Security Information and Event Management, Cloud Access Security Broker, Data Leakage Prevention, Web Application Firewall, Multi Factor Authentication, Data Rights Management, Identity Access/Privileged Access Management, etc.)
- At least 3 years of experience in leading teams of varying sizes teams of varying sizes and resource management.
- Extensive experience of working directly with client stakeholders as a single point of contact.
- Experience in managing escalations and driving remediation initiatives. Experience in driving continuous service improvement.
- Understanding of frameworks such as ISO 27001/27002, COBIT, and other relevant compliance such PCI, HIPAA, SOX, FISMA
- Ability to work with minimal supervision. Willingness to learn and improve. Administrative, presentation, project management skills and the ability to multitask. Creativity and problem-solving skills.
- English communication skills required as primary language (written and oral), with additional French and Spanish language abilities preferred.
- English is required for this position as this role will regularly interact with stakeholders across Canada, US and other countries across our Global footprint where English is the common language. Due to the significant high volume of interactions with these English-speaking stakeholders, which is inherent to this position, it is not possible to reorganize the company's activities to avoid this requirement.
Nice to have skills:
- Certifications in public cloud (level of architect, security engineer/specialist) or Security Certifications in CISSP, CISM, CCSP or CCSK, CEH, CISA, Azure Security Engineer, Azure Solution Architect Expert, AWS Solution Architect Associate/Professional
- Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, ISA/IEC 62443, NERC CIP, HIPAA, etc.
- Scripting experience using either Shell, Python, Perl, JavaScript, PowerShell, Azure-CLI, AWS-CLI, GCP CLI, etc.
- Certifications for product or vendor security solutions such as: AZ-500, SC-200
- Either possess (or have the eligibility to obtain) a Canadian security clearance (highly preferred)
- Knowledge of public cloud environments (Azure, AWS or Google Cloud), preferred to currently possess foundational certification.