SOC Team Leader

Our global client is seeking a SOC Team Lead to join their security department. The main role of the SOC Team Lead is to provide operational oversight and management of the SOC Security Analysts, assist in growing the SOC capability, and act as an escalation point and subject matter for security-related queries. This is a remote based role.

Experience and Qualifications:

• SOC operations and tools (SIEM, EDR, AV, etc.)
• MSP/MSSP experience (desired)
• Continuous SOC innovation and optimization leveraging MDR and SOAR
• Remote Monitoring and management (RMM) tools
• Microsoft Azure, AWS and GCP Security Stack
• Vulnerability Scanning, Management and remediation (especially Tenable and Qualys)
• End User Awareness training and Phising simulation
• Wireless APS, Swicthes, Routers and Firewalls (Multi-vendor)
• Threat Intelligence (via tooling and OSINT)
• Advanced email analysis
• Owning and running and incident through the entire incident response lifecycle
• 1+ years in team leadership role (preferably in SOC)
• 3+ years in a SOC environment

Experience in the following is desirable:

• Multi-vendor SIEM (Azure Sentinel, AlienVault and Splunk)
• Darktrace (any module)
• Scripting (Kusto Query Language KQL) PowerShell, Python and Regex
• Other security tools as a bonus
• Cyber essentials (plus)
• Working with a remote team
• ISO 27001 & 9001 task/documentation accountability to maintain certification
• 5+ years in a cybersecurity environment

Required Qualifications:

• Cyber Security related certifications
• CISM/CISSP preferred
• Multi cloud vendor certifications (Microsoft, AWS and GCP)
• Linux/Unix Certifications (advantageous)
• Blue team level 1 (BTL1) – desired
• Other technical security and vendor qualifications is a bonus

Please apply if you meet the above requirements or send your CV to Kindly note, if you do not hear back from a consultant within 2 weeks of your application, please consider yourself unsuccessful this time around. Please note, our consultants receive a high influx of CVs and cannot respond to everyone. Your understanding is greatly appreciated