Back to jobs
SOC Team Lead
- Posted 28 May 2024
- Salary Competitive Salary
- LocationQatar
- Job type Permanent
- Discipline Cyber Defence
- Reference747316
- Contact NameSabri Babouri
Job description
Trident Search is on the hunt for a talented SOC Team Lead who will join a leading MSSP based in the Middle East.
As the SOC Team Lead, you will play a pivotal part in the day to day running of the Security Operations Centre. You will mentor more junior Analysts, work closely with the SOC Manager and act as an escalation point for Incident Response.
Responsibilities:
As the SOC Team Lead, you will play a pivotal part in the day to day running of the Security Operations Centre. You will mentor more junior Analysts, work closely with the SOC Manager and act as an escalation point for Incident Response.
Responsibilities:
- Lead and manage the Security Operations Center
- Oversee security event monitoring, management, and response activities
- Ensure effective incident identification, assessment, qualification, reporting, communication, mitigation, and monitoring
- Maintain compliance with SLAs, establish process adherence, and drive process improvements to achieve operational goals
- Enhance or develop processes and procedures to strengthen the Security Operations Framework
- Review operations and highlight SLA management challenges
- Manage team and vendor resources, and initiate corrective actions as needed for the Security Operations Center
- Administer and maintain SOC tools
- Perform threat management, threat modeling, identify threat vectors, and develop security monitoring use cases
- Integrate standard and non-standard logs into SIEM solutions
- Create and present reports, dashboards, and metrics to measure SOC operations effectiveness to Senior Management and Client stakeholders
- Act as a technical expert, providing advice and support to clients and the business
- Coordinate with stakeholders to build and maintain positive working relationships
- Proficient in Incident Management and Response
- Expertise in security monitoring and threat hunting with SIEM and EDR solutions
- Comprehensive knowledge of security concepts, including cyber-attacks, threat vectors, intrusion analysis, and incident management
- Strong background in threat management
- Familiarity with operating systems such as Windows, Linux, and Unix
- Understanding of applications, databases, and middleware to address security threats
- Skilled in creating reports, dashboards, and documentation
- Excellent communication and leadership abilities
- Vendor management experience
- Capable of handling high-pressure situations with technical and non-technical stakeholders
- Strong analytical, problem-solving, and interpersonal skills
- Relevant degree
- One or more relevant industry certifications
- Regional experience
- Background with Managed Security Service Providers (MSSP) or Managed Detection and Response (MDR) providers
- Experience in continuous operations (24/7)
- Proficiency with multiple SIEM and EDR solutions
- Certifications such as GSOM, GSOC, GCIH, or GMON
