EMEAR SOC Operations Manager

  • Location:
    Krakow, Poland
  • Area of Interest
    Professional Services
  • Job Type
  • Technology Interest
  • Job Id

What You’ll Do

Cisco Active Threat Analytics (ATA) is Cisco's managed security offering; a fully outsourced, managed security service. It rapidly detects and responds to security events by analyzing your network traffic, evaluating security telemetry and using global intelligence. ATA takes ownership of the network security event lifecycle. It covers management and monitoring of customer security controls and threat detection, confirmation, mitigation, and remediation. ATA is a key component of Cisco’s Advanced Services strategy to address the largest and fastest growing segment of the security services market.


• Manage the EMEAR Security Operations Center (SOC) team and drive service delivery excellence

• Work with your peers in our US and Asia SOCs and Global SOC Leadership to implement key performance metrics, drive continuous service improvement efforts and monitor and manage SLO, SLA and KPI performance

• Assist with Customer Onboarding processes and procedures

• Coordinate scheduling and delivery of SOC tours with customer account teams

•  Assist Customer Engagement Managers with preparation and delivery of Quarterly Service Reviews for EMEAR customers

• Work with peers in US and Asia SOCs and Global SOC Leadership to develop, document, and maintain SOC-related policies, procedures, and processes to ensure our services are delivered with a high level of quality in a globally consistent and efficient manner

• Develop and provide EMEAR SOC documentation, metrics and reports on a regular basis to meet management, compliance or audit needs

• Maintain close coordination of service delivery and operations with SOC managers in other theaters (e.g. shift scheduling, shift handover, customer service escalations, etc.)

• Stay abreast of trends in the cyber-security threat landscape that could impact our customers and/or our operations and work with the global SOC team to communicate these trends to our customers

• Analyze SOC operations and recommend upgrades/changes that should be made to ensure we are positioned to continue to stay ahead of advanced threats and deliver a high level of value to our customers

• Manage the SOC team including talent development, team training, staff performance reviews, 24x7x365 staff shift scheduling and staff attendance

• Build and manage talent pipeline to meet staffing needs for our EMEAR SOC Operations

• Perform quality assurance/quality control for the EMEAR SOC

Who You’ll Work With

You will be part of the Global SOC leadership team, specifically responsible for leading the teams of security engineers, analysts and investigators in our EMEAR SOC.  As we expand our global operations, you will be responsible for helping us both grow and expand our service delivery team to capture this market opportunity.

You will work closely with your peers in the United States and Asia to deliver advanced cyber threat detection and security device management for our global customer base.

You will also work closely with our global customers to ensure that our services are meeting their needs and to ensure that they are receiving the value expected from our service offerings. 


Who You Are

Must haves:

• Solid understanding of the security threat landscape and the common tools, tactics and practices of cyber threat actors

• Experience and In-depth knowledge of Information or Cyber Security Operations, Incident Response, and/or Cyber Investigations

• Previous leadership experience as a SOC or NOC Manager, Managed Security Service, or as a senior leader of an information security operation (e.g. CISO, Director of Information Security, or similar) 

• Process-oriented person, experienced with case work, operational metrics, continuous improvement methodologies

• Strong project and program management skills

• Ability to work a flexible schedule as needed to support 24x7x365 operations in the EMEAR SOC

• Bachelor’s degree in technical engineering or IT related field is an advantage



• Strong knowledge of common, modern security controls (e.g. Intrusion Detection and Prevention Systems (IDS, IPS), user activity monitoring systems, data leakage prevention systems and SIEM systems)

• Background in at least 2 of the following domains: security products and technologies; security engineering, security incident response; security analysis and investigations

• Security certifications (CISSP, CISM, GIAC certs) and ITIL certification preferred

• Working knowledge of common process improvement frameworks like Six Sigma or Lean

Why Cisco

We connect everything: people, processes, data, and things. We innovate everywhere, taking bold risks to shape the technologies that give us smart cities, connected cars, and handheld hospitals. And we do it in style with unique personalities who aren’t afraid to change the way the world works, lives, plays and learns. We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation. We are dreamers and we are doers. We Are Cisco.


We connect everything - people, process, data and things. We innovate everywhere to create fresh ideas and possibilities. We make a meaningful difference that will benefit everyone - our people, our customers and the world around us.

Our technology changes the way the world works, lives, plays and learns. But our edge doesn't come from technology. It comes from our people. We're looking for the kind of people who take smart risks, thrive in diverse environments, inspire their colleagues, and are committed to having an impact on the world. Whether you create technology solutions that redefine business or build connections that strengthen the community, you can make it happen at Cisco!

Powered ByLogo