SOC Lead

Responsibilities :

Lead and manage the Security Operations Center (SOC), ensuring effective monitoring, detection, analysis, and response to cybersecurity threats and incidents across the organization.

Define and implement SOC processes, workflows, and escalation protocols aligned with industry best practices and regulatory requirements.

Oversee the deployment, configuration, and optimization of SOC technologies including SIEM, SOAR, threat intelligence platforms, and endpoint detection and response (EDR) tools.

Coordinate incident response activities, ensuring timely investigation, containment, eradication, and recovery from security events.

Conduct regular threat hunting exercises and proactive analysis to identify potential vulnerabilities and emerging threats.

Collaborate with internal teams and external partners to ensure comprehensive coverage of security monitoring and incident handling.

Develop and maintain SOC metrics, dashboards, and reporting mechanisms to provide visibility into security posture and operational effectiveness.

Ensure continuous improvement of SOC capabilities through training, process refinement, and technology upgrades.

Act as a key point of contact for cybersecurity incidents, audits, and compliance reviews, providing expert guidance and documentation.

Mentor and lead SOC analysts, fostering a culture of vigilance, accountability, and professional growth within the team.

Skills Required

Technology, Infrastructure Security