Cybersecurity Operations Director leading cybersecurity managed services operations at a global accounting firm. Overseeing teams, driving growth, and serving as an advisor to clients.
About the role
- Senior SOC Analyst responsible for detection, triage, and response operations. Fostering incident handling, detection engineering, and automation within a leading live event solution provider.
Responsibilities
- Build and operationalize SOC playbooks and escalation workflows.
- Lead alert triage, enrichment, and false-positive suppression.
- Author detection requirements; write and tune SIEM rules.
- Develop hunt hypotheses; lead hunt programs using advanced telemetry and signals intelligence.
- Design detection strategies across the kill chain; drive enterprise detection strategy.
- Execute incidents end-to-end: containment/eradication, documentation, and communication.
- Conduct post-incident reviews and drive remediation and control improvements.
- Encourage industry collaboration; embed resilient detection engineering practices.
- Advocate and implement automation-first incident response.
Requirements
- Proven experience in a SOC or equivalent detection & response function.
- 3-5 years in Security Operations, Detection & Response, or Incident Handling (SOC experience required).
- Hands-on experience with SIEM (e.g., SecOps, Sentinel, QRadar), EDR (e.g., CrowdStrike, Defender, SentinelOne), and SOAR platforms.
- Proficient in authoring detections, rule tuning, enrichment pipelines, and alert routing.
- Demonstrated capability in building and executing IR playbooks and containment/eradication plans.
- Experience conducting post-incident reviews and RCAs, and delivering corrective action plans to engineering teams.
- Scripting skills (Python/PowerShell/Bash) for automation, enrichment, and data wrangling.
- Excellent written communication for case documentation and executive-ready incident summaries.
Benefits
- medical
- dental
- vision
- life and disability insurance
- paid vacation
- 401k plan
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
L2 SOC Analyst managing security incidents and responses at Keyloop, focusing on digital transformation in the automotive sector.
Security Operations Analyst responsible for developing security processes and incident response. Collaborating with multiple teams for security best practices in a hybrid work environment.
Security Manager leading IAM and SecOps at fintech solutions provider in Brazil. Developing and implementing information security programs aligned with best practices and compliance requirements.
Security Engineer enhancing cybersecurity tools and solutions for The Walt Disney Company. Performing system analyses and developing security configurations for improved protection against cyber threats.
Security Operations Lead responsible for security operations aligning with policies and compliance. Handling incident response, vulnerability management, and supporting IT teams with security expertise.
SOC L2 Analyst responsible for security monitoring and incident investigation. Analyzing escalated alerts, conducting correlation with SIEM, and executing response actions.
Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
Lead Specialist in Security Operations, enhancing detection engineering and incident response at Pearson. Collaborate with teams and drive process improvements in a high - paced environment.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.