Key Responsibilities:

• Oversee daily operations of the SOC, including monitoring, detection, triage, and response to security incidents.
• Lead and manage the SOC team, including analysts, engineers, and threat responders.
• Ensure timely identification and resolution of security incidents and coordinate root cause analysis.
• Develop and maintain incident response plans and playbooks in alignment with industry best practices.
• Continuously assess and improve SOC tools, processes, and coverage for threat detection and analysis.
• Collaborate with threat intelligence, vulnerability management, and security architecture teams.
• Ensure effective incident escalation, communication, and reporting to senior leadership.
• Maintain metrics and reporting to track SOC performance and incident trends.

Qualifications:

• 8+ years of experience in cybersecurity, with at least 3 years managing SOC or incident response teams.
• Strong knowledge of SIEM, SOAR, EDR, and other security monitoring tools.
• Proven leadership in managing high-pressure security incidents.
• Relevant certifications (e.g., CISSP, GCIA, GCIH, CISM) are preferred.