Senior Cyber Security Operation Lead

Working Experience Requirements

Minimum 10 + years in cybersecurity operations, with at least 2 years in a SOC leadership role .

Proven experience in managing 24x7 SOC operations.

Hands-on experience with SIEM platforms (e.g., Microsoft Sentinel, ELK).

Job Responsibilities & Duties

Supervise daily SOC operations, including alert triage, investigation, and escalation.

Ensure timely response to critical incidents and manage the full incident lifecycle.

Conduct regular threat hunting using MITRE ATT&CK techniques and specialized searches for indicators of compromise.

Monitor and optimize SIEM and other security tools for performance and accuracy.

Investigate security breaches, gather evidence, analyze data, and document all actions taken.

Track suspicious network, application, and user behavior to identify potential threats.

Conduct investigations upon requests for data by customers and / or internal teams.

Develop and maintain SOC playbooks and standard operating procedures (SOPs).

Assist with the identification, creation, and refinement of SOC processes and procedures.

Coordinate with other cybersecurity teams for threat intelligence sharing and remediation.

Prepare and present SOC performance reports and incident summaries to management.

Provide mentorship and training to SOC analysts to enhance technical and analytical skills.

Stay abreast of current threats, vulnerabilities, and emerging attack techniques that may impact the organization.

Support and guide Junior analysts and engineers on investigation as required

Skills Required

Proficiency in KQL and other query languages for threat analysis.

Familiarity with MITRE ATT&CK framework and its application in threat detection.

Strong knowledge of incident response processes and security monitoring tools.

Experience with automation and orchestration tools for SOC efficiency.

Ability to handle high-severity incidents and make quick decisions under pressure.

Education Requirements

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.

Relevant certifications such as CISSP , GCIA , GCIH preferred.