Manager – Security Operation Center Division

Job Description

• Establish, implement, and continuously enhance the SOC operating model, ensuring scalable, resilient, and effective 24/7 security monitoring and incident response capabilities
• Lead and oversee all SOC functions, including security monitoring, alert triage, threat detection, incident response, digital forensics, and recovery activities
• Define and implement SOC strategy, roadmap, and maturity improvement plans aligned with the Bank’s overall IT security strategy
• Manage and optimize security technologies, including SIEM, EDR/XDR, WAF, SOAR, and threat intelligence platforms, ensuring integration, automation, and full visibility across the Bank’s environment
• Establish and continuously improve detection use cases, correlation rules, and playbooks to enhance detection accuracy and reduce false positives
• Lead proactive threat hunting and adversary detection activities using threat intelligence and advanced analytics
• Oversee end-to-end incident response management, ensuring timely detection, containment, eradication, recovery, and post-incident review with proper documentation
• Integrate and operationalize threat intelligence, ensuring relevance to the Bank’s risk profile and emerging cyber threats
• Ensure comprehensive logging, monitoring, and visibility across infrastructure, applications, and digital banking platforms
• Conduct root cause analysis and ensure implementation of corrective and preventive actions to strengthen the Bank’s security posture
• Ensure SOC readiness for major cyber incidents and crisis situations, including leading cyber drills, simulations, and incident response exercises
• Collaborate with Infrastructure Security, Application Security, and Identity Management teams to ensure timely remediation of incidents and alignment of controls
• Ensure compliance with regulatory directives, internal policies, and standards such as ISO 27001, NIST, and PCI DSS, including requirements from the National Bank of Ethiopia
• Define and monitor SOC KPIs and performance metrics, including detection time, response time, incident trends, and operational efficiency
• Prepare and present regular reports on threat landscape, SOC performance, incidents, and risks to management

About You

Job Requirements

• First Degree in Computer Science / Information Technology / Computer Engineering / MIS / or related fields
• Minimum of 9 years of relevant experience, of which 3 years should be at a supervisory level

Skills Required:

• Computer / Software / It / Data