SOC Lead

We are looking for a Security Operations Center Lead to play a pivotal role in monitoring and analyzing security events, detecting, and responding to potential security threats.

✅ Responsibilities:

✔ Team leadership and management:

• Lead, mentor, and develop a team of SOC analysts across different levels (L1, L2, L3).
• Manage shift schedules to ensure 24/7 coverage of security monitoring and incident response.
• Conduct regular performance evaluations and provide feedback and training opportunities.

✔ Security monitoring and incident response:

• Oversee the monitoring of security alerts and events from various sources including SIEM, IDS/IPS, firewalls, and other security tools.
• Direct and coordinate incident response activities, ensuring timely and effective resolution of security incidents.
• Develop and maintain incident response plans and playbooks.

✔ Threat intelligence and analysis:

• Stay updated with the latest threat landscape and ensure the SOC team is informed about emerging threats and vulnerabilities.

✔ Process and procedure development:

• Develop, implement, and refine SOC processes and procedures to improve efficiency and effectiveness.
• Conduct regular reviews and updates of SOC documentation, including incident reports, runbooks, and operational guidelines.

✔ Collaboration and communication:

• Collaborate with other IT and security teams to ensure comprehensive security coverage and incident management.
• Communicate effectively with technical and non-technical stakeholders, including executive management, about security incidents and their impact.

✔ Continuous improvement:

• Identify and implement opportunities for process improvements within the SOC.
• Conduct post-incident reviews and root cause analysis to prevent the recurrence of similar incidents.
• Stay informed about the latest advancements in security technologies and recommend enhancements to SOC tools and practices.

✅ Requirements:

✔ Minimum of 5 years of experience in a SOC or cybersecurity role, with at least 2 years in a leadership or management position.

✔ Proven experience in incident detection and response, threat intelligence, and security monitoring.

✔ Deep understanding of security information and event management (SIEM) tools and other security technologies.

✔ Strong knowledge of networking concepts, protocols, and security architecture.

✔ Experience with threat hunting and advanced threat detection techniques.

✔ Excellent leadership and team management skills.

✔ Strong analytical and problem-solving abilities.

✔ Effective communication and presentation skills.

✔ Ability to work under pressure and handle multiple priorities.

✅ Nice to have: 

✔ A Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field is a plus.

✔ Familiarity with regulatory requirements such as ISO27001, ISO27701, PCI DSS, GDPR, and others is a plus.

✅ We offer excellent benefits, including but not limited to:

✔ Snacks in the Office.

✔ 24 days of vacation per year.

✔ Attractive office location and facilities.

✔ Medical insurance.

✔ Breakfasts and lunches in the office (partially paid by the Company).

✔ Languages classes (partially paid by the Company).

✔ Social Club of the Company.