Security Operations Lead
Tasks
- Build playbooks and automation pipelines
- Conduct incident forensics support
- Coordinate escalation handling and on call rotations
- Develop SIEM correlation rules
- Develop detection engineering and monitoring logic
- Drive Threat Hunting
- Integrate and validate log sources
- Integrate new data sources into SOC detection pipelines
- Lead day-to-day SOC operations
- Lead incident response lifecycle
- Lead threat intelligence intake
- Mentor SOC analysts
- Oversee SIEM dashboarding and alert tuning
- Oversee threat intelligence integration into detections
- Perform packet analysis for investigations
- Provide daily situational reporting
- Refine SOPs workflows and response playbooks
- Triage security alerts
Perks/Benefits
- N/A
Skills/Tech-stack
AWS Security | AWS security monitoring | Alert Tuning | Automation | Azure Security | Azure Security Monitoring | Correlation rules | Detection and Response | Detection engineering | Detection pipelines | Elastic Stack | Endpoint Detection and Response | Endpoint detection | Event management | ExtraHop | Forensics | Google Cloud | Google Cloud Platform | Google Cloud Platform Security Monitoring | Google Cloud Platform security | Incident Response | Log Management | Network detection | Network detection and response | Packet Analysis | SIEM Correlation Rules | SIEM correlation | SOAR | Security Information | Security Information and Event | Security Information and Event Management | Security monitoring | Splunk | Threat Intelligence | Threat hunting | Trellix
Education
N/A
Roles
Lead | Operations Lead | SOC Lead | Security | Security Operations Lead
Regions
Countries
States
Related jobs
-
Security Engineer USD 99K-130KAWS | Access Management | Azure | Bash | Cloud SecurityImmediate start preferred | Onsite work environmentMid-level Full TimeDaly City, United States4h ago
-
Agile Framework | Antivirus | Authentication Systems | Automation | Cisco IPActive Clearance required | Onsite workMid-level Full TimeColorado Springs, Colorado, United States4h ago
-
Security Engineer II, Insider Threat (TS/SCI, Onsite) USD 102K-179KAll source analysis | Compliance | Cybersecurity | Insider Threat | InvestigationsCompetitive benefits package | Onsite work 3 days per week | Professional development programs | Professional mentorshipMid-level Full TimeArlington/Rosslyn, Virginia, United States4h ago
-
Security Engineer II, DCO Engineer (TS/SCI, Onsite) USD 88K-147KAWS | Ceph | Cyber Defense | Cyber Operations | CybersecurityMid-level Full TimeDenver, Colorado, United States5h ago
-
Security Engineer III, SIEM Engineer (Secret Clearance) USD 102K-188KCorrelation searches | CrowdStrike NG-SIEM | Dashboard Reporting | Event analysis | Incident AnalysisMentorship | Professional development | Remote workSenior-level Full TimeArlington/Rosslyn, Virginia, United States; Baltimore, Maryland, …5h ago
-
Bash | Detection Systems | Detection and Response | Digital forensics | EDRMentorship | Professional development | Team collaboration | Travel opportunitiesSenior-level Full TimeArlington/Rosslyn, Virginia, United States; Baltimore, Maryland, …5h ago
-
Security Engineer III, Splunk Architect (TS Clearance) USD 102K-188KAccess Control | Automation Scripting | Data models | Event management | Incident ResponseMentorship | Onsite work up to 5 days per week | Professional development | Travel up to 20 percentSenior-level Full TimeArlington/Rosslyn, Virginia, United States; Baltimore, Maryland, …5h ago
-
Consultant - AI SOC USD 102K-188KAPI Integration | Automation and response | Case management | Data Enrichment | Data IngestionMid-level Full TimeChicago, Illinois, United States5h ago
-
Manager - AI SOC USD 107K-188KApplication Programming | Application Programming Interfaces | Artificial Intelligence | Automation and response | Case managementMid-level Full TimeChicago, Illinois, United States5h ago
-
Application Security Engineer USD 100K-215KAWS | Artificial Intelligence | Azure | CI/CD | Code reviewMid-level Full TimeTysons Corner, VIRGINIA, United States5h ago
-
Director, Security Engineering USD 209K-246KCloud Security | Cybersecurity | Detection and Response | Extended Detection and Response | Identity Threat DetectionBehavioral wellness services | Employee equity plan | Employee recognition program | Generous time away from work | Health care insuranceExecutive-level Full TimeAustin, TX, United States,12h ago
-
Director, Security Engineering USD 209K-246KCloud Security | Cybersecurity | Detection and Response | Extended Detection and Response | Identity Threat DetectionBehavioral and Emotional Wellness Services | Employee equity plan | Employee recognition program | Generous time away from work | Health care insuranceExecutive-level Full TimeUS - California12h ago
-
Information Systems Security Officer USD 140K-160KACAS | Account Management | ArcSight | Audit Log | Audit Log Review401k match | Casual dress code | FSA | Free lunch | HSASenior-level Full TimeHawthorne, California, United States17h ago
-
Cybersecurity Administrator, Data Loss Prevention USD 110K-190KAccess Control | Access Management | CASB | Cause analysis | Data Classification401k match | Casual dress code | Dental insurance | FSA | Free lunchSenior-level Full TimeSan Francisco, California, United States17h ago
-
Cybersecurity SOC Analyst II USD 110K-160K800-171 | Allow Block Listing | App Allow Block Listing | Azure Sentinel | Bash401k match | Casual dress code | FSA | Free daily lunch | HSAMid-level Full TimeSan Francisco, California, United States17h ago
-
Cybersecurity SOC Analyst II USD 110K-160K800-171 | Azure Sentinel | Bash | CIS Controls | CMMC401k match | Casual dress code | FSA | Free daily lunch | HSAMid-level Full TimeHawthorne, California, United States17h ago
-
Security Engineer II USD 160K-180KAPI Security | AWS | Application Security | Authentication | AuthorizationHealth insurance | Learning and development | Life insurance | Mental health benefitsMid-level Full TimeSeattle, Washington United States, United States17h ago
-
Senior Security Engineer USD 130K-160KAWS | Application Security | Application Security Testing | Architecture Review | Automation Scripting401k match | Accidental death and dismemberment insurance | Dental insurance | FSA | Flexible paid time offSenior-level Full TimeNew York, New York18h ago
-
Security Operations Analyst - 3rd Shift USD 80K-100KAWS | Azure | CIS Controls | DNS | ELKDental insurance | Flexible work environment | Life insurance | Medical insurance | Pre-tax retirement savings programSenior-level Full TimeUnited States18h ago
-
Lead Cyber Security Engineer | $140K-$175K + Remote + Equity | Exciting High-growth AI-Powered Operational Intelligence Startup A USD 140K-175KAPI Security | AWS | Azure | Cloud Security | Compliance10 days PTO | Equity | Health medical and vision coverage | Paid Holidays | Remote within United StatesExecutive-level Full TimePhiladelphia, PA, United States R18h ago
-
Access Control | Business Continuity | CCTV | Classified Information | Classified information handlingMid-level Full TimeLong Beach, California, United States19h ago
-
Staff DevSecOps Engineer USD 170K-245KAlert Tuning | CI/CD | CSPM | Call Management | Cloud SecuritySenior-level Full TimeSeattle, WA or McLean, VA or … R19h ago
-
Staff DevSecOps Engineer USD 170K-245KAlert Tuning | CI/CD | CSPM | Cloud Workload Protection | Cloud platformEmployer paid health care | Mental health benefits | Optional 401k | Paid parental leave | Professional developmentSenior-level Full TimeSeattle, WA or McLean, VA or … R19h ago
-
Security Analyst USD 100K-110K800-53 | AWS | C# | Cloud Security | Datadog401k | Dental | Healthcare | Paid time off | RRSPMid-level Full TimeRaleigh, Montréal20h ago
-
Entry-level Full TimeRemote-Washington R20h ago