OVERVIEW
As a SOC Lead you will oversee the operations of our x Security Operations Center Youll provide leadership and technical expertise to a team of Senior SOC Analysts and support our security initiatives This position will require a deep understanding of cybersecurity principles incident response threat hunting and threat intelligence
RESPONSIBILITIES
- Directly supervise and mentor Senior SOC Analysts across various shifts ensuring efficient operations of our x SOC
- Continuously monitor and review security alerts data and reports to identify potential security incidents and issues
- Lead and coordinate the response to security incidents including detailed analysis containment eradication and recovery actions
- Enhance our capabilities in threat hunting and threat intelligence
- Provide input and recommendations on the use of security tools including SIEM SOAR and digital forensics tools
- Perform advanced log analysis and correlation
- Oversee digital forensic investigations ensuring proper chain of custody and preservation of evidence
- Develop and deliver training to SOC team members
- Maintain and improve operational processes and procedures
- Work collaboratively with other security and IT teams within the organization to align security protocols and strategies
- Prepare and deliver regular reports to management detailing SOC performance ongoing threats and incident responses
- Engage with cybersecurity vendors and partners to stay updated on the latest threat landscape and potential tools/technologies that can be integrated into the SOC
- Review and optimize alert thresholds and configurations to minimize false positives and ensure the detection of malicious activities
- Participate in tabletop exercises and red teaming activities to test and improve incident response capabilities
- Assist in the selection and evaluation of cybersecurity tools and technologies to strengthen SOC capabilities
- Establish key performance indicators (KPIs) to measure SOC performance and effectiveness
- Ensure compliance with industry standards regulations and best practices
- Develop and maintain a continuous professional development program for SOC personnel
REQUIREMENTS
- Bachelors degree in Computer Science Information Security or related field (or equivalent experience)
- Certifications such as CISSP CISM GIAC GCIH GCIA GCFA GNFA or related are highly preferred
- Proven experience in a SOC leadership role ideally within a large Financial enterprise environment
- Indepth knowledge and understanding of incident response threat hunting and threat intelligence
- Familiarity with SOAR platforms and their role in automating Tier SOC tasks
- Extensive experience in log analysis and digital forensics
- Knowledge of financial environments and their specific security considerations
- Excellent communication and leadership skills
- Ability to work on a rotating shift schedule
- Advanced analytical and problemsolving skills
- Ability to work under pressure during highintensity situations and make quick decisions
- Familiarity with various operating systems (eg Windows Linux macOS) and network architectures
- Knowledge of cloud environments (AWS Azure GCP) and their security considerations
- Experience with endpoint detection and response (EDR) solutions
- Commitment to staying updated with the latest cyber threats vulnerabilities and industry trends
- Strong ethics and understanding of ethics in business and information security
- Ability to articulate technical concepts to a nontechnical audience especially to upper management and board members
Vertical
Technology
Remote Work
No