Job Title: SOC Manager
Role Overview:
As a SOC Manager, you will lead and manage the Security Operations Center to enhance incident response, threat detection, and overall security posture. Collaborating with your team, you will improve processes, establish response protocols, and act as the primary escalation point for critical incidents. You will also coordinate with internal and external stakeholders to ensure seamless operations and compliance with security standards.
Key Responsibilities:
* Oversee SOC operations, incident response, and threat detection capabilities.
* Lead process improvements, audit SOC incidents, and develop new use cases and automation.
* Serve as a POC for SOC engineering, threat intelligence, and threat exposure management teams.
* Mentor security analysts in risk management, incident response, and operational procedures.
* Develop and present reports, dashboards, and metrics to senior management.
* Act as the primary Incident Manager and coordinate responses to emergencies.
* Ensure security tools and policies adhere to industry standards and best practices.
* Collaborate with IT teams on escalations, tracking, and performance improvements.
Key Skills and Experience:
* Strong knowledge of authentication, endpoint security, Firewalls, PKI, DLP, IAM, EDR, and SOAR.
* Proficiency in SIEM technologies like Splunk ES, QRadar, or Google Chronicle.
* Expertise in SOC automation, cloud operations (AWS), and building security operations centers.
* Experience in incident management, threat modelling, and developing security use cases.
* Excellent communication and presentation skills, including reporting to senior management.
* Ability to lead under pressure and drive process improvements effectively.