Global SOC Cloud and XDR Lead

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

We are seeking a Global SOC Cloud and XDR Lead (Consultant) to drive security operations transformation, cloud-native security, and extended detection & response (XDR) strategies for global enterprises. In this role, you will lead the evolution of Security Operations Centers (SOCs) by integrating cloud security, automation, and AI-driven threat detection to enhance cyber resilience. You will work closely with security teams, business leaders, and technology partners to develop cutting-edge security monitoring, incident response, and proactive threat management frameworks.

Who You Are

You are an SOC transformation expert with deep expertise in Cloud Security, SIEM, SOAR, EDR/XDR, and Security Operations best practices. You have a proven track record in leading global SOC strategies, modernizing security operations, and implementing advanced detection and response capabilities. You thrive in fast-paced, enterprise environments, where you drive innovation, automation, and efficiency in cybersecurity operations.

Key Responsibilities

• SOC Transformation & Strategy: Design and implement next-gen SOC strategies, integrating cloud security, AI-driven analytics, and automation.
• Cloud Security & XDR Integration: Deploy cloud-native security monitoring, incident detection, and response capabilities across multi-cloud environments (AWS, Azure, GCP).
• Threat Detection & Incident Response: Develop advanced threat detection models, response playbooks, and automated remediation workflows.
• SIEM, SOAR, & AI-Driven Security Operations: Implement and optimize SIEM (Splunk, Microsoft Sentinel, QRadar) and SOAR (Cortex XSOAR, Microsoft Sentinel, etc.) solutions.
• EDR & XDR Solutions: Deploy and integrate leading EDR/XDR platforms (Microsoft Defender, CrowdStrike, Palo Alto Cortex, SentinelOne).
• Proactive Threat Hunting & Intelligence: Enhance SOC capabilities by leveraging MITRE ATT&CK, threat intelligence feeds, and behavioral analytics.
• SOC Automation & Efficiency: Implement AI-driven threat detection, playbook automation, and security orchestration to optimize SOC operations.
• Security Incident Management & Compliance: Ensure SOC operations align with global security frameworks (NIST, ISO 27001, CIS, MITRE, PCI-DSS).
• Consulting & Executive Advisory: Act as a trusted advisor to CISOs, SOC Directors, and IT leaders, providing security transformation roadmaps.
• Collaboration & Global Leadership: Partner with security vendors, industry alliances, and threat intelligence communities.

Who You Are

Required Skills and Experience

• 10+ years in cybersecurity, with 5+ years in SOC & XDR & consulting roles.
• SOC & XDR Expertise: Strong background in Security Operations, Managed SOC, MDR, and XDR implementation.
• Cloud Security & SIEM/SOAR: Hands-on experience with cloud-native security monitoring and SIEM/SOAR automation.
• Incident Response & Threat Intelligence: Knowledge of SOC workflows, threat hunting, and cyber kill chain methodologies.
• AI & Automation in Security Operations: Experience integrating machine learning & AI-driven analytics in SOC environments.
• Regulatory Compliance & Risk Management: Strong knowledge of ISO 27001, NIST, GDPR, CIS, MITRE ATT&CK, PCI-DSS.
• Client & Stakeholder Engagement: Ability to communicate complex security risks to technical and executive audiences.
• Project Leadership & Consulting: Experience leading global SOC transformation initiatives in enterprise environments.

Preferred Skills

• CISSP, CISM, CCSP, GIAC GCIA, GCFA, GCTI, GCIH, CEH, OSCP
• loud Security Certifications (AWS/Azure/GCP Security, Microsoft Security Operations Analyst)
• SIEM/XDR Certifications (Splunk, Microsoft Sentinel, Palo Alto Cortex XDR, CrowdStrike, SentinelOne)

Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations.  At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!

If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.