SOC Manager

About Bit Sentinel 

BIT SENTINEL is one of the leading companies in Central and Eastern Europe to provide Managed Cyber Security services, Offensive Security, Compliance, and Cyber Range Services. 

The BIT SENTINEL Security Operation Center (BSS-CERT) is an effective and efficient solution designed, operated, and managed by experienced and certified security specialists providing offensive and defensive capabilities through the detection, analysis, and remediation of cyber threats.  

Since it was founded, the BIT SENTINEL team focused on providing premium and high-quality offensive security services such as advanced black box and white box penetration testing, application code review, forensics, and incident response. 

BSS-CERT is one of the first professional SOC-as-a-Service available for customers across all major verticals and industries who need comprehensive monitoring, detection, response, and threat intelligence capabilities.

The Security Operation Center currently operates under normal business hours in Bucharest, Romania, with the capability to be extended on 24/7 monitoring, depending on customers’ needs. Moreover, our team of engineers has a 24/7 on-call SLA response outside of standard business hours.

Duties and Responsibilities

The SOC Manager at BSS-CERT, the team that offers Security Operations Center as a Service (SOCaaS), is pivotal in ensuring robust cybersecurity for our clients. This role involves overseeing daily SOC operations for effective security monitoring, incident detection, and response while managing and optimizing security solutions, and leading and mentoring a team of SOC analysts and other security professionals.

  • Oversee daily operations of the SOC for effective security monitoring, incident detection, and response.
  • Manage Elastic Security solutions for enhanced threat detection, monitoring, and incident response.
  • Develop and maintain SOC processes, procedures, and documentation.
  • Lead and mentor a team of SOC analysts, fostering professional growth and continuous training.
  • Collaborate with clients to understand their security needs and tailor SOCaaS offerings accordingly.
  • Ensure compliance with industry standards and best practices (e.g., NIST, ISO 27001).
  • Report regularly on SOC performance and metrics to senior management and clients.
  • Playing a leading role in security technology selection and deployment
  • Monitoring and providing recommendations to improve existing capabilities
  • Participating in projects for new security solutions
  • Acting as the main point of contact for onboarding environments
  • Driving and sustaining optimization of internal workflows and automation
  • Supervising incident response actions
  • Acting as the last level of escalation for operation teams
  • Developing and enhancing security processes, procedures, and documentation
  • Interacting with vulnerability, threat management, and red teams
  • Supervising malware investigations, incident response, and threat hunting
  • Supervising the research and development of new playbooks, runbooks, and automation

Requirements and Qualifications

  • Minimum 5 years of experience in IT&C; 
  • Professional certification is an advantage (eg. SANS, ISACA, ISC2)
  • Minimum of 3-6 years of experience in a SOC environment, with at least 2 years in a managerial role.
  • Solid understanding of network services, vulnerabilities and attacks.
  • Strong organizational, leadership, and communication skills, along with expertise in Elastic SIEM and various security tools. 
  • Previous experience with raw log file review, data correlation, and analysis, as well as with network security tools, network traffic analyzers, firewall logs, network flows, intrusion detection systems, system logs, memory dumps, vulnerability management, SOAR platforms, SIEM, especially Elastic SIEM, and other Enterprise / Open Source equivalents.
  • Previous experience in  malware investigations, incident response, and threat hunting
  • Previous experience in customer-facing interactions

Good to have

  • State and configuration automation tools like Ansible
  • Knowledge of building and deploying with Container tools: Docker Container Management and Registries, Kubernetes management
  • Previous knowledge of reverse engineering and malware analysis
  • Knowledge of information security standards such as ISO27001, PCI DSS, GDPR, NIS
  • Experience with systems development, systems administration and/or network administration
  • University degree from an accredited college or university, or equivalent 
  • Previous experience in the configuration of network security tools, network traffic analyzers, firewalls logs, network flows, intrusion detection systems, system logs, memory dumps, vulnerability management etc
  • Good knowledge of Bash (Unix shell) scripting, Python, Powershell

Benefits package:

  • Premium Private health insurance for you and one family member
  • Meal tickets
  • Professional and friendly working environment
  • Professional development through specific training/certification, with a yearly budget, depending on the level of experience and expertise
  • Excellent job perspective for the future
  • An exciting career in a dynamic, growing organization with a very diverse portfolio 
  • Work from Home options available 
  • Attractive compensation package: Fixed salary compensation along with rewards & incentives performance-related bonus scheme  
  • Seasonal team building activities 
  • Gift vouchers
  • And many more

Other info

Besides providing cybersecurity services & advisory for companies from different sectors such as Energy, Fintech, Healthcare, Real Estate, Retail, Ecommerce, Online, Startups, Blockchain, and Critical Infrastructures we are also proud of:

  • CyberEDU, a spin-off of Bit Sentinel – a next-gen cyber range as a service which is being used to host UNbreakable Romania, the National Cyber Security Olympics and the Romanian Cyber Security Challenge, while providing hands-on training and labs for Universities & Companies
  • Phish Enterprise, a spin-off of Bit Sentinel – empower employees with cybersecurity training and phishing simulations to defend against cyber threats
  • Participating in CYRESRANGE: Cyber Ranges Resiliency Networks
  • Participating in ECYBRIDGE: strengthening synergies in defence and civilian cybersecurity
  • Participated in RESISTO project: an innovative solution for Communication Critical Infrastructures holistic situation awareness and enhanced resilience
  • Technical coordinator for the National Phase & Selection of National Teams of European Cyber Security Challenge, one of the most important cybersecurity competitions from Europe
  • Developer & Technical Coordinator of Business Internet Security Threat Map, a technology developed by us for Orange Romania that presents the visualization from a high overview perspective of the data gathered from the Orange Romania Business Internet Security agents deployed across Romania

How to contact us

For CV or any other inquiries, please send us an email at [email protected].

Or fill out the form and we will get back to you asap. 🙂

    Upload your CV (PDF):

    I allow Bit Sentinel to process my personal data for this role and I understand I can withdraw at any point.

    [email protected]

    get in touch