Description
Job Details: SOC Team Lead
* Oversee day-to-day SOC operations ensuring effective detection, investigation, and response to cybersecurity threats.
* Mentor and coach L1 and L2 SOC analysts, fostering professional growth and knowledge sharing.
* Perform root cause analysis and recommend remediation.
* Validate and thoroughly investigate all identified security events promptly.
* Provide advice and guidance on response action plans based on incident type and severity.
* Develop and refine incident response playbooks and procedures.
* Collaborate with cross-functional teams to improve security posture.
* Stay current with emerging threats, vulnerabilities, and attack techniques.
* Work closely with Threat Intelligence teams to incorporate intelligence into SOC operations.
* Assist in developing and enhancing automation capabilities, including SOAR.
* Develop and tune security alerts, detection rules, and use cases.
* Collaborate with SOC engineers to enhance threat detection.
* Conduct proactive threat-hunting activities.
Must Have Requirements:
* Minimum 5 years in SOC or related cybersecurity role.
* Strong knowledge of incident response frameworks (NIST, MITRE ATT&CK).
* Hands-on experience with SIEM (Sentinel, QRadar), EDR (CrowdStrike, Defender).
* Proficiency in scripting languages (Python, PowerShell).
* Familiarity with cloud security (AWS, Azure, GCP).
* Proven leadership experience mentoring SOC analysts.
* Excellent communication and collaboration skills.
* Strong analytical and problem-solving skills.
Preferences:
* Relevant certifications such as CISSP, GCIA, GCIH, CEH, or equivalent are a plus
Education
Any Graduate
- Posted On: Today
- Experience: 5+ years of experience
- Availability: Remote
- Openings: 2
- Category: SOC Lead
- Tenure: Flexible Position