SOC Team Lead

Role: SOC Team Lead
Duration: 3 months with extension and possible Fulltime conversion

Work Type: Remote and Full time
Location: USA
We are looking for a highly skilled and motivated SOC Team Lead to join our cybersecurity team. This individual will oversee day to day operations ensuring the effective detection, investigation, and response to cybersecurity threats. The SOC Team Lead will mentor analysts, optimize security processes, and collaborate with cross-functional teams to strengthen the organization's security posture. The ideal candidate has experience working in a SOC environment and is eager to contribute to the development of a new cybersecurity organization. Join us to build and shape a new cybersecurity organization and address cutting-edge security challenges.

Key Responsibilities:

• Lead the investigation, analysis, and response to cybersecurity incidents.
• Mentor and coach L1 and L2 SOC analysts, fostering professional growth and knowledge sharing.
• Perform root cause analysis and provide recommendations for remediation.
• Ensures that all identified events are promptly validated and thoroughly investigated
• Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity
• Develop and refine incident response playbooks and procedures.
• Collaborate with cross-functional teams to improve security posture.
• Stay current with emerging threats, vulnerabilities, and attack techniques.
• Work closely with Threat Intelligence teams to stay ahead of emerging threats and incorporate intelligence into SOC operations.
• Assist in developing and enhancing automation capabilities (including SOAR).
• Develop and tune security alerts, detection rules, and use cases.
• Collaborate with SOC engineers to enhance threat detection capabilities.
• Conduct threat-hunting activities to proactively identify potential threats.

Qualifications and Experience:

• Minimum of 5 years of experience in a SOC or related cybersecurity role.
• Strong knowledge of incident response methodologies and frameworks (e.g., NIST, MITRE ATT&CK).
• Hands-on experience with security tools such as SIEM (Sentinel, QRadar, etc.), EDR (CrowdStrike, Defender)
• Proficiency in scripting languages (Python, PowerShell) for automation.
• Familiarity with cloud security environments (AWS, Azure, Google Cloud Platform).
• Proven leadership experience, with the ability to mentor and develop SOC analysts.
• Excellent communication and collaboration abilities.
• Strong analytical and problem-solving skills.
• Relevant certifications such as CISSP, GCIA, GCIH, CEH, or equivalent are a plus.

What We Offer:

• An opportunity to play a critical role in building a new cybersecurity organization.
• A dynamic and collaborative work environment.
• Professional development and career growth opportunities.
• Competitive salary and benefits package.
• Flexible working arrangements.