Responsibilities

Monitor security alerts and incidents, analyze suspicious activities, and respond to security breaches in a timely manner.

Lead investigations of security incidents, conducting thorough root cause analysis and forensics as needed.

Develop and maintain security monitoring playbooks and incident response procedures to ensure readiness for potential threats.

Collaborate with IT and engineering teams to implement security technologies, tools, and framework enhancements to bolster defenses.

Continuously analyze and improve SOC processes to optimize efficiency and reduce response times to incidents.

Provide mentorship and guidance to junior SOC team members, sharing expertise and experiences to elevate team performance.

Stay abreast of the latest threat intelligence, vulnerabilities, and exploits to inform proactive security measures and enhance incident response capabilities.

Requirements

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.

Minimum of 5 years of experience in security operations, incident response, and threat analysis.

Strong knowledge of security monitoring tools (e.g., SIEM, IDS/IPS) and incident response methodologies.

Familiarity with relevant industry standards and regulations (e.g., ISO 27001, GDPR, PCI-DSS).

Experience with scripting and automation to enhance security operations and reporting.

Certifications such as CISSP, CISM, or CEH are highly desirable and demonstrate expertise in the field.

Excellent analytical and problem-solving skills, with a keen attention to detail and a strong ability to multitask in a high-pressure environment.