SOC Engineer - Cybersecurity

A fast-growing international technology team is expanding its engineering capability in Vietnam and is looking to hire a SOC Engineer, who will play a critical leadership role in driving 24/7 Security Operations Centre (SOC) excellence. 

This is an opportunity to step into a high-visibility position, leading frontline cyber defense while shaping service delivery for enterprise clients. This role is responsible for overseeing 24/7 SOC operations, driving service excellence, and ensuring effective incident response for our clients.

Responsibilities:

SOC Leadership & Operations

• Lead, mentor, and develop SOC analysts to build a high-performing team
• Oversee daily SOC activities, incident workflows, and shift operations
• Act as an escalation point for high-severity incidents, providing expert-level resolution
• Ensure compliance with SOC playbooks, SOPs, and regulatory frameworks

Service Excellence & Continuous Improvement

• Deliver cybersecurity services aligned with SLAs and KPIs
• Enhance SOC processes, tools, and detection capabilities
• Partner with internal teams on customer onboarding and operational support

Client Engagement & Escalation Management

• Serve as the senior escalation point for key clients
• Build strong, trust-based relationships with stakeholders
• Proactively identify risks and opportunities to improve service value

Reporting & Strategic Insights

• Provide regular updates on operations, risks, and performance metrics
• Analyze incident trends and customer feedback to drive improvements
• Contribute to the evolution of SOC tools, capabilities, and offerings

Requirements:

• 3+ years of experience in SOC/cybersecurity service delivery
• At least one certification: CISSP, CISA, or CISM
  
• Bachelor's degree in Cyber Security, Information Security, or related field (Master's is a plus)
  
• Fluent in English
• Proven experience in SOC operations with strong incident handling expertise
• Prior leadership experience managing SOC or security teams
• Hands-on knowledge of SIEM, threat intelligence, IDS/IPS, firewalls, and malware analysis
• Strong familiarity with frameworks such as MITRE ATT&CK and NIST
• Ability to perform under pressure with strong analytical and decision-making skills
• Willingness to work in a 24/7 SOC environment