Specialist, Cybersecurity - SOC

Chemistry that Matters™ 

A career at SABIC provides you with an opportunity to leave a lasting positive impact to the world and yourself. From excellent health and well-being benefits to our comprehensive learning programs. We offer a wide range of benefits and offerings that recognize that our people have unique motivations and ambitions. It’s all about matching what matters to you with what matters to us. Let’s explore what matters!

As one of the world’s largest diversified chemical companies, we activate the power of human capital to address society’s future challenges. Through partnerships, we enable life-saving medical innovations and help fight world hunger. We are driving the circular economy for the benefit of communities and our planet through sustainability initiatives, such as our TRUCIRCLE™ portfolio.  Today, the company serves customers in more than 140 countries with a global workforce of close to 29,000 talented individuals.  Our values – Inspire, Engage, Create, and Deliver – are the foundation of our success. To learn more about these and how we strive to Be the Impact, click  here: www.sabic.com/en/careers/benefits-that-matter/career-matters/SABIC-Leadership-Way

Our purpose is "Chemistry that Matters". This is what drives us to do what we do. "Chemistry" goes beyond applying science and technology to enhance the supply of essential materials to the world. It is how we work, to build long-lasting relationships of trust. “What Matters” is making a meaningful impact for the world – through the customers and communities we collaborate with, so that we succeed and grow together.

It is all about matching what matters to you with what matters to us. We are mindful about the importance of the team we are building and how our team members impact to our culture.   We believe that good ideas come from anywhere, being inclusive to diverse perspectives is stimulating, encourages innovation and is critical to our mission. Let us explore this together!

For an overview of our benefits here at SABIC, please visit: www.yoursabicbenefits.com

Job Summary

Provides governance and operational performance oversight of detect, respond, and recovery cybersecurity functions. The primary function is to govern and provider oversight to managed services SOC operations, ensuring effective threat detection, response, and continuous improvement across IT and OT environments. 

The role includes management of cybersecurity controls, platforms, tooling, and managed services related to threat management and incident detection, response, and recovery. Key responsibilities include incident governance, threat detection, threat intelligence, threat hunting, and managing and maintaining operational playbooks, metrics, exercises, and incident reporting.

This role acts as the domain authority for cybersecurity operations relate to cybersecurity incidents, and identifies, analyzes, communicates, contains, and recovers from cyber incidents as they occur. The role is responsible to run, manage, and maintain existing cybersecurity control platforms and tooling, as well as to plan and execute projects to improve existing solutions and to introduce new capabilities and controls in alignment with the department's strategy and roadmap.

Job Responsibilities

• Service owner for managed security service provider performance, SLAs, and service quality across all capabilities related to cybersecurity threat detection, incident response, and recovery, including service reviews and overseeing SOC operations on a daily basis.
• Govern major incident response, including identification, containment, eradication, recovery, root cause identification, and post-incident reviews.
• Focal point for coordinating communications related to cybersecurity threats, events, incidents, and recovery activities.
• Escalation point for any issues with SOC-related services and controls
• Define use cases, detection rules, and threat coverage priorities.
• Define standards and use cases for IT and OT log integrations with SOC operations.
• Manage and maintain log management and SIEM ingestion platforms and process.
• Manage and maintain SIEM use cases, standards, operational playbooks, and reporting.
• Ensure threat intel is operationalized into SOC processes.
• Review threat intel sources for integration
• Deliver threat intelligence advisories and briefings to key stakeholders based on their areas of interest, such as OT threats to manufacturing cybersecurity focal points.
• Deliver executive reporting on incidents, trends, and risks.
• Deliver executive reporting on threats and state of cybersecurity internally, within the industry, and of interest to the business.
• Provide custom reports and dashboards to cybersecurity, IT, and OT stakeholders driven by cybersecurity log and SIEM tooling.

Job Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• 5+ years of experience with regulatory compliance and information security management frameworks (such as International Organization for Standardization [ISO] 27000, COBIT, National Institute of Standards and Technology [NIST] 800)
• 8-10 years in SOC /Incident Response
• Strong understanding of SIEM, SOAR, EDR
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
• An ability to effectively influence others to modify their opinions, plans or behaviors.
• An understanding of organizational mission, values, goals and consistent application of this knowledge
• Strong problem-solving and troubleshooting skills.
• Knowledge of firewalls, intrusion detection systems, intrusion prevention systems, security information and event management (SIEM) systems, security orchestration, automation, and response (SOAR) platforms, and other security tools and technologies
• Project Management
• Change Management
• Personal Leadership
• Strong Communication
• Drive for Results

Eligibility Requirements (Regional Specific)

• You must submit your application for employment online to be considered. Please submit your resume using the “Apply Now/Apply” option on this page.
• You must be 18 years or older
• Applicants must be currently authorized to work for SABIC in the United States on a full-time basis.

Work Availability

Regular, predictable attendance is an essential function of this position. Applicants must be regularly available and willing to work (e.g. Monday – Friday)] during assigned hours of operation and such other hours as the company determines are necessary or desirable to meet business needs

We are proud to be a diverse and an equal opportunity employer .We are fully committed to a culture of respect and inclusion.