Lead Information Security Operations Center (SOC) Analyst

Our client, a rapidly growing cybersecurity firm, is seeking a highly experienced and motivated Lead Information Security Operations Center (SOC) Analyst to spearhead their remote SOC operations. This is a critical, senior-level role responsible for leading a team of security analysts in monitoring, detecting, investigating, and responding to cybersecurity threats and incidents across the organization's infrastructure. You will be instrumental in developing and refining SOC processes, playbooks, and detection capabilities to ensure timely and effective mitigation of security risks. This is a fully remote position, offering the flexibility to work from anywhere while making a significant impact.

Key responsibilities include: Leading and mentoring a team of SOC analysts, providing technical guidance and performance management. Overseeing the 24/7 monitoring of security alerts, events, and logs using SIEM, IDS/IPS, and other security tools. Developing, implementing, and refining incident response plans, playbooks, and procedures. Conducting in-depth investigations into security incidents, performing root cause analysis, and recommending corrective actions. Identifying and mitigating vulnerabilities and security threats proactively through threat hunting and intelligence analysis. Developing and tuning detection rules and analytics within the SIEM and other security platforms. Staying current with the latest threat landscapes, attack vectors, and cybersecurity trends. Collaborating with other IT and security teams to ensure comprehensive security coverage and effective incident resolution. Producing detailed reports on security incidents, trends, and SOC performance metrics. Contributing to the continuous improvement of the SOC's tools, technologies, and operational processes. The ideal candidate will possess a Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field. A minimum of 7 years of experience in a Security Operations Center (SOC) environment, with at least 3 years in a lead or senior analyst role, is required. Proven expertise in SIEM platforms (e.g., Splunk, QRadar, LogRhythm), EDR solutions, and network security monitoring tools is essential. Strong understanding of threat intelligence, incident response methodologies (e.g., NIST framework), and common attack techniques is mandatory. Relevant certifications such as CISSP, GCIA, GCIH, or CEH are highly desirable. Excellent analytical, problem-solving, and communication skills are crucial. As this is a fully remote role, exceptional self-discipline, strong organizational abilities, and the capacity to lead and collaborate effectively within a distributed team are vital for success. You will play a pivotal role in safeguarding our client's digital assets.