SOC L3
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Lead and mentor a team of SOC analysts, providing guidance, training, and support to enhance their technical skills and professional development. Serve as the escalation point for complex security incidents, providing expert-level analysis, guidance, and decision-making to ensure timely and effective incident response.
Key Skills for This Role
Full Job Posting
Overview
- Lead and mentor a team of SOC analysts, providing guidance, training, and support to enhance their technical skills and professional development.
- Serve as the escalation point for complex security incidents, providing expert-level analysis, guidance, and decision-making to ensure timely and effective incident response.
- Develop and maintain standard operating procedures (SOPs), playbooks, and incident response plans to streamline security operations and ensure consistency in response processes.
- Conduct regular reviews and assessments of security alerts, incidents, and operational metrics to identify trends, gaps, and areas for improvement.
- Collaborate with cross-functional teams, including IT, engineering, and compliance, to implement security controls, configurations, and best practices to mitigate cyber risks.
- Conduct threat intelligence analysis to identify emerging threats, vulnerabilities, and attack techniques, and incorporate this knowledge into proactive defense strategies.
- Lead incident response exercises, tabletop simulations, and post-incident reviews to assess and improve the organization's incident response capabilities.
- Stay abreast of the latest cybersecurity technologies, tools, and industry best practices, and evaluate their potential impact on the SOC's operations and capabilities.
- Act as a subject matter expert (SME) on cybersecurity matters, providing guidance and recommendations to senior management on strategic initiatives, projects, and investments.
- Use advanced threat intelligence techniques to identify cyber threats which may have found their way
- Conducts periodic compromise assessment/ penetration testing and vulnerability assessments to gauge resilience, find vulnerable entry-points, and propose recommendations based on assessments results.
- Recommends ways to optimize security monitoring tools through threat hunting findings.
- Develops cyber indicators to maintain awareness of the status of the highly dynamic operating environment.
- Conduct research, collect & analyze data and evaluate intelligence.
- Expand the usage of security monitoring tools to improve the security of the environment based on business use cases or changes in threat landscape, root causes from security incident response, or output from security analytics.
- Develop focused reporting and briefings for advanced cyber threats to various teams and leaders
- Responsible for overall SOC process management as defined in SOC operations
Qualifications
- Bachelor's degree, Information Security, or related field (or equivalent work experience).
- Extensive experience (typically 7-9 years) in a security operations role, with progressively increasing levels of responsibility and leadership.
- In-depth knowledge of cybersecurity technologies, tools, and methodologies, including SIEM, EDR, threat intelligence platforms, incident response frameworks, etc.
- Strong understanding of networking protocols, operating systems, and cloud environments, with the ability to analyze and interpret log data and network traffic.
- Demonstrated experience in leading incident response efforts for complex security incidents, including forensic analysis, malware reverse engineering, and digital investigations.
- Excellent leadership and communication skills, with the ability to effectively lead and motivate a team of cybersecurity professionals and collaborate with stakeholders at all levels of the organization.
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Incident Handler (GCIH), or Certified Information Security Manager (CISM) are highly desirable.
- Experience working in a regulated industry (e.g., finance, healthcare, government) with knowledge of industry regulations and compliance requirements is a plus.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at CyberGate Defense
SOAR Engineer
Abu Dhabi, UAE
Design and implement advanced SOAR playbooks for use cases such as phishing, incident response, vulnerability management, and threat hunting. Integrate SOAR platforms with SIEM, EDR/NDR, TIPs, and ITSM tools. Develop cus
Senior Pre Sales -Cyber Security
Abu Dhabi, UAE
Job Description: Senior Cybersecurity Pre-Sales Position: Senior Cybersecurity Pre-Sales Location: Abu Dhabi / Dubai Department: Sales Reports to: Vice President Job Summary We are seeking a highly experienced and techni
Senior Mss Engineer_Splunk
Abu Dhabi, UAE
Deployment & Architecture + Deploy Splunk Enterprise / Distributed Architecture + Configure Indexers, Search Heads, Forwarders + Implement clustering (Indexer / SH Cluster) 2️⃣ Log Source Onboarding + Configure Universal
DFIR Analyst
Abu Dhabi, UAE
Lead and participate in all phases of the incident response lifecycle, including preparation, detection and analysis, containment, eradication, recovery, and post incident activity. Conduct in-depth digital forensic inv