Senior Specialist - Security Operations

About
The company, a leader in AI-powered cloud and digital infrastructure, is driving transformative technology solutions globally. Leveraging advanced resources and partnerships, the company empowers clients to harness sovereign AI infrastructure, especially in sectors with stringent regulatory needs.

The Opportunity
Play a pivotal role in advancing the company’s SOC capabilities by leading complex threat investigations, enhancing detection logic, and strengthening incident response processes. As a Senior Specialist, you will serve as a subject matter expert across security monitoring technologies, threat analysis, and detection engineering, helping shape the technical maturity of SOC operations.

Responsibilities

• Lead advanced investigations of complex security incidents, conducting deep-dive analysis across logs, hosts, network data, and cloud platforms to determine root causes and potential business impact.
• Develop, enhance, and optimize SIEM detection rules, correlation logic, and SOAR playbooks to strengthen SOC detection capability and reduce mean time to detect (MTTD).
• Oversee the tuning, configuration, and performance of SIEM, EDR, VA, SOAR, and threat intelligence tools, ensuring operational reliability and data quality.
• Provide technical guidance to SOC analysts, reviewing escalations, validating findings, and supporting continuous improvement of investigation quality and analytical depth.
• Create and maintain advanced SOC documentation such as incident response playbooks, detection engineering guidelines, and technical runbooks.
• Perform regular assessments of SOC operational readiness, identifying gaps in detection coverage, log ingestion, use case completeness, and incident workflows.
• Deliver technical reports and threat insights to leadership, highlighting emerging risks, key findings, and recommendations for security enhancements.
• Collaborate with cloud, engineering, GRC, and IT teams to support investigations, improve logging strategies, and strengthen cross-domain visibility.
• Lead threat-hunting initiatives by proactively identifying anomalous patterns, attacker behaviors, and high-risk activities across the environment.

Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field, with advanced security certifications such as SANS, GCIA, GCIH, or similar considered an asset.
• 3–5 years of hands-on experience in SOC operations, security monitoring, incident response, or detection engineering roles.
• Deep technical knowledge of SIEM platforms, SOAR orchestration, EDR technologies, log analysis, cloud security monitoring, and vulnerability management.
• Strong understanding of cybersecurity frameworks including MITRE ATT&CK, ISO 27001, NIST CSF, and CIS Controls.
• Proven ability to independently investigate complex security incidents and provide well-documented findings and recommendations.
• Experience developing SIEM use cases, enhancing correlation logic, and designing automated SOAR workflows to improve SOC maturity.
• Excellent communication and documentation skills, enabling clear articulation of technical insights to both technical and non-technical stakeholders.
• Ability to work under pressure, manage multiple priorities, and lead initiatives that drive measurable improvements in detection and response capabilities.
• Strong analytical, problem-solving, and research skills with an ability to stay current on emerging threats and adversary techniques.
• Demonstrated ability to mentor junior analysts, share knowledge, and elevate the overall performance and skill level of the SOC team.

Work Conditions
Competitive Salary based on skills and experience.
Yearly performance-based annual bonus.
Access to health coverage including dental and vision insurance.
Access to top-tier learning platforms for career growth.