Manager - SOC

Lennox (NYSE: LII) is an industry leader in energy-efficient climate-control solutions founded over a century ago on the principles of integrity and innovation. Dedicated to sustainability and creating comfortable, healthier environments for our residential and commercial customers while reducing their carbon footprint, we lead the field in innovation with our cooling, heating, indoor air quality, and refrigeration systems.

• Provide leadership & oversight for SOC operations and own the Security Incident management process.
• Performs and implements threat detection, hunting, incident monitoring, and investigation response activities.
• Develop and maintain reporting metrics and mechanisms used to execute and measure SOC activities.
• As the Subject Matter Expert (SME) on Cyber Security, render guidance on all Security Incidents and Threats.
• Assist/Collaborate/Follow up with internal and external contacts on remediation of security incidents.
• Proactively mitigate cyber security risks and strengthen the attack detection and response processes.
• Respond to Critical security incidents and conduct investigations, including documenting findings, analyzing root causes, and recommending corrective actions.
• Oversee the detection, analysis, and response to every other security incident.
• Experience in tuning and/or configuring SIEM, vulnerability tools, and Endpoint [Malware Analysis]
• Develop and implement incident response plans, ensuring a swift and effective response to emerging threats.
• Experience in the Vulnerability Management process in identifying and prioritizing the Vulnerabilities & working with stakeholders for mitigation.
• Experience working on MITRE & ATT@CK framework.
• Mentor and guide talent development of direct reports and assist in hiring talent

• 15+ years of experience, including 5+ years of relative experience (Related experience includes
SOC manager/team lead, Incident response, etc.).
• Prior experience in managing Security Operations Centers/Managed Security services.
• Expertise in Cyber Security attacks, tools & techniques, and experience with Advanced Threat
management.
• Experience in SIEM tools, SOAR, and Threat Intelligence platforms.
• Knowledge of various operating system Flavors, Applications, Databases, and Middleware to
address security threats against the same.
• Experience/knowledge in Digital Forensics.
• Professional/Technical Certifications (Security+, CCSE, CCSP, TICSA, MCSE, CISSP, etc.) desirable