Manage day-to-day operations of the Security Operations Center.
• Lead a team of SOC analysts (L1, L2, L3) and ensure 24x7 monitoring and incident response.
• Develop and maintain SOC policies, processes, playbooks, and escalation procedures.
• Oversee threat detection, analysis, containment, and mitigation of security incidents.
• Ensure timely investigation and resolution of incidents and proper documentation.
• Interface with IT, application teams, and management during incidents.
• Maintain and enhance the capabilities of security tools (SIEM, SOAR, EDR, IDS/IPS, etc.).
• Track key performance indicators (KPIs) and generate regular reports on SOC activities.
• Continuously assess and improve SOC capabilities, including automation and training.
• Stay current with emerging threats, vulnerabilities, and technologies.
• Manage SOC staffing, hiring, and shift scheduling as needed.
• 8+ years of experience in cybersecurity with at least 3 years in a SOC leadership role.
• Strong understanding of security monitoring, threat intelligence, malware analysis, and incident response.
• Experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight), SOAR tools, and endpoint security.
• Excellent knowledge of security frameworks (MITRE ATT&CK, NIST, ISO 27001).
• Strong leadership and team management skills.
• Excellent communication and stakeholder management abilities.
• Experience with regulatory and compliance requirements (GDPR, HIPAA, PCI-DSS, etc.).

Preferred Certifications:
• CISSP, CISM, GCIA, GCIH, or similar.
• ITIL or PMP (for process/project management experience).