About the role
AI summarisedLead the Security Operations Center (SOC) team in providing a secure environment through continuous management and coordination of Security Information and Event Management (SIEM) systems. This strategic role involves overseeing security operations, identifying and mitigating cyber risks, and ensuring robust security measures are in place to protect clients.
ConsultingOnsiteCyber
Key Responsibilities
- Design and implement enterprise SecOps architecture including SIEM, SOAR, EDR/XDR, Threat Intelligence, and IAM integration.
- Define log collection strategy across cloud, on-prem, SaaS, endpoints, and network.
- Architect detection strategy aligned to MITRE ATT&CK and establish monitoring coverage standards.
- Deploy and configure SIEM/XDR platforms, developing detection rules and use cases.
- Integrate security tools such as EDR, NDR, IAM, cloud security, and vulnerability management.
- Build SOAR playbooks and automation workflows while establishing alert tuning processes.
- Develop incident response procedures, runbooks, severity classification, and escalation matrices.
- Align SecOps practices with frameworks including NIST CSF, ISO 27001, MITRE ATT&CK, and CIS Controls.
Requirements
- Bachelor’s degree in computer science, cybersecurity, or a related field.
- 12+ years of experience in SOC Engineering scope.