Security Support Lead


Job Description

The Security support lead will help to support and deliver the Upstream vision of redefining
traditional SOC operations for the unique requirements of the automotive industry, establishing
Vehicle Security Operations using automation, orchestration and analytics. 
The position requires acting as a security focal point for Upstream security operations while
creating processes, assessing incident reports, and developing and implementing product and
security operations plans. The Security expert will support the product, customer success and
operations teams in creating methodologies, compliance reports, SOC performance metrics,
and reporting on security operations to business leaders. The SOC expert would also ensure
that the correct training is in place and that staff can implement procedures and policies.


  • Build, lead and manage Upstream’s Security Operations
  • Primarily responsible for security event monitoring, management, and response
  • Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to drive operational excellence
  • Provide administrative direction and support for daily operational activities
  • Participate in business reviews with partners and customers
  • Manage the application deployment, monitoring, maintenance, development, upgrade, and support of all customer managed systems and software
  • Establish operational foundations, defining metrics and KPIs to drive governance, quality, and efficiency.  Influence and improve existing processes through innovation and operational change
  • Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring
  • Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
  • Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in managing SLAs
  • Responsible for integration of standard and non-standard logs in SIEM
  • Creation of reports, dashboards, metrics for SOC operations and presentation to Sr. Mgmt

Required Skills

  • Previous team leader in a SOC - Must
  • Previous hands-on operation experience in a SOC – Must
  • Experience in security device management, integration and SIEM (Splunk, Qradar, Sentinel) – Must
  • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. – Must
  • Tier 3 support experience
  • Proficient in Incident Management and Response
  • Familiarity with malware techniques and attack techniques (e.g. code injection, DGA, hooks, etc.)
  • Knowledge of applications, databases, middleware to address security threats against the same
  • Strong troubleshooting and problem-solving skills
  • Proficient in preparation of reports, dashboards, and documentation
  • Excellent communication and leadership skills
  • Ability to handle high pressure situations with key stakeholders
  • Excellent interpersonal skills, positive attitude and outstanding customer approach
  • Ability to take initiative and adapt