Cybersecurity Operations Lead is required by a large company to support and lead a 24/7 Security Operations Centre.
Responsibilities:
* Leading day-to-day SOC operations across all shifts and supporting incident escalation management.
* Providing technical leadership on alert triage, investigations, threat hunting, and incident response.
* Acting as the escalation point for complex or high-severity security incidents.
* Implementing security operations process improvements and automation solutions.
* Supporting and improving security monitoring, threat detection, and incident response tools and systems.
* Managing, mentoring, and developing a team of SOC analysts.
* Ensuring compliance with SLAs, reporting requirements, and security standards.
Required Experience
* Experience in Security Operations in a senior or lead SOC role.
* Experience working with security monitoring and detection tools such as SIEM systems, endpoint protection tools, automated response platforms, and threat intelligence feeds.
* Experience with Microsoft Sentinel, Microsoft Defender, CrowdStrike, Splunk, Palo Alto Networks, or similar security technologies.
* Extensive threat hunting, incident response, and detection engineering experience.
* Experience developing and tuning detection rules and security automation.
* Experience in an MSSP, enterprise SOC, or multi-client environment.