SOC Manager

We are seeking an experienced and technically strong SOC Manager to lead and enhance enterprise Security Operations capabilities. The role requires deep expertise in SOC technologies, security monitoring, threat detection, incident response, log management, and security tool integration. The ideal candidate will be responsible for assessing existing security implementations, identifying operational and technical gaps, improving detection capabilities, optimizing SOC processes, and supporting the integration and tuning of multiple cybersecurity solutions.

Key Responsibilities SOC Operations & Team Management Lead day-to-day Security Operations Center (SOC) activities and security monitoring functions. Manage and mentor L3 SOC analysts and provide technical guidance on complex incidents and investigations. Security Monitoring & Detection Engineering Perform technical assessments and reviews of security tools, monitoring coverage, detection logic, and operational gaps.

Improve security visibility through log source onboarding, normalization, parsing, and event categorization. Develop, optimize, and fine-tune correlation rules, use cases, alerts, and detection mechanisms. Review false positives and false negatives to improve detection accuracy and operational efficiency.

Incident Response & Threat Hunting Support incident investigations, threat hunting, malware analysis, and root cause analysis activities. Identify gaps in security monitoring and recommend remediation or enhancement strategies. Security Integration & Automation Work on security integration and interoperability across multiple cybersecurity technologies.

Ensure proper health monitoring and operational effectiveness of security tools and log pipelines. Support automation and orchestration initiatives to improve SOC efficiency. Stakeholder Coordination & Reporting Coordinate with internal teams and external security vendors/agencies during implementation, troubleshooting, and incident response activities.

Prepare technical assessment reports, risk observations, recommendations, and remediation tracking documentation. Governance & Process Improvement Assist in defining SOC processes, playbooks, escalation procedures, and operational standards. Participate in security audits, compliance assessments, and governance activities as required.

Qualification, Experience & Skills Educational Qualification Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Experience 7+ years of experience in SOC Operations, Security Monitoring, or Incident Response. Technical Skills Strong knowledge of SIEM, EDR, DLP, SOAR, UEBA, and network security solutions.

Experience in log analysis, parsing, correlation rule creation, threat detection, and incident response. Good understanding of Windows, Linux, network protocols, and security architecture. Knowledge of MITRE ATT&CK framework and cybersecurity best practices.

Experience working with security vendors and technical teams. Scripting and automation knowledge using Python, PowerShell, or Shell scripting is preferred. Additional Skills Strong analytical, troubleshooting, and reporting capabilities.

Excellent communication and team management skills. Preferred Certifications Relevant cybersecurity certifications such as CISSP, CISM, CEH, GCIA, GCIH, or equivalent certifications will be preferred.