About the role
AI summarisedLead the Security Operations Center (SOC) team at Deloitte, overseeing security operations, designing SecOps architecture, implementing SIEM/XDR platforms, developing incident response procedures, and ensuring compliance with frameworks like NIST CSF and ISO 27001. This senior manager role requires 12+ years of SOC engineering experience and a bachelor's degree in a related field.
BusinessFull-timeCyber
Key Responsibilities
- Design and implement enterprise SecOps architecture (SIEM, SOAR, EDR/XDR, Threat Intelligence, IAM integration)
- Define log collection strategy across cloud, on-prem, SaaS, endpoints, and network
- Architect detection strategy aligned to MITRE ATT&CK
- Establish monitoring coverage and telemetry standards
- Define security tooling roadmap and integration patterns
- Deploy and configure SIEM/XDR platforms
- Develop detection rules and use cases
- Integrate security tools (EDR, NDR, IAM, cloud security, vulnerability management)
- Build SOAR playbooks and automation workflows
- Establish alert tuning and noise reduction process
- Develop incident response procedures and runbooks
- Define severity classification and escalation matrix
Requirements
- Bachelor's degree in computer science, cybersecurity, or a related field.
- 12+ years of experience in SOC Engineering scope.
- Experience in Security Operations / SOC
- Hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar, Elastic)
- Strong knowledge of MITRE ATT&CK mapping
- Experience deploying EDR/XDR solutions
- Incident response and digital forensics experience
- Log parsing and query writing (KQL, SPL, etc.)
- Strong analytical, problem-solving, and decision-making skills.
- Excellent communication and leadership abilities.
- Relevant certifications (e.g., CISSP, CISM, CEH) are highly preferred.