Lead Analyst - SOC Monitoring (CPX)

The Lead SOC Analyst is responsible for managing the day-to-day activities of the SOC Monitoring, Incident Detection, and Response Operations. The role involves collaborating with internal and client teams to identify and respond to threats and vulnerabilities and providing technical expertise and guidance to support incident response efforts. This position requires strong technical expertise, leadership skills, and the ability to mentor and develop team members.

Responsibilities

• Lead and manage daily SOC activities and ensure efficient monitoring of security systems.
• Oversee the triage, investigation, and resolution of security incidents.
• Ensure incident handling aligns with defined SLAs and escalation procedures.
• Coordinate and lead incident response efforts.
• Analyze and respond to complex threats using threat intelligence and advanced detection techniques.
• Mentor and guide SOC analysts and conduct training sessions.
• Manage and optimize SIEM tools and other security technologies.
• Proactively identify threats through threat hunting exercises and oversee vulnerability scanning and patch management.
• Generate detailed reports on incidents, trends, and SOC performance.
• Work closely with IT, Cloud, Application, Risk, and Security teams for cross-functional incident handling.

Qualifications

• Bachelor’s degree in engineering, computer science, information systems, or quantitative fields.
• ISC² Certified Information Systems Security Professional (CISSP).
• CISM Certified Information Security Manager.
• GIAC Certifications.
• Minimum of 10+ years’ relevant experience in a large-scale ICT environment focused on Information/Cyber Security.
• High-level understanding of TCP/IP protocol and OSI seven layer model.
• Knowledge of security best practices and concepts.
• Expertise in incident response and handling methodologies.
• Experience with SIEM tools and automated incident response tools.
• Strong understanding of security architectures and devices.