Security Operations Center (SOC) Team Lead

CCDS is at the forefront of providing innovative cybersecurity solutions and is seeking a skilled and experienced Saudi Security Operations Center (SOC) Team Lead to join our dynamic team. As the SOC Team Lead, you will oversee the daily operations of the Security Operations Center, ensuring that our cybersecurity protocols are effectively implemented. You will play a critical role in managing a team of SOC analysts and in responding to security incidents, while driving improvements in processes, and ensuring compliance with the organization's security standards.

The SOC Team Lead is responsible for overseeing the daily operations of the SOC team, ensuring efficient incident handling, and fostering a culture of continuous improvement. Their responsibilities typically include:

• Team Leadership and Management:
  • Manage and supervise a team of Level 1 and Level 2 SOC Analysts.
  • Provide leadership, mentorship, and coaching to team members.
  • Conduct performance evaluations and identify training needs.
  • Ensure adequate staffing and resource allocation.
• Incident Response Management:
  • Oversee incident response activities, ensuring efficient and effective containment and remediation.
  • Review and approve incident reports and documentation.
  • Develop and maintain incident response playbooks and procedures.
  • Act as a point of escalation for complex or critical security incidents.
• Security Monitoring and Analysis:
  • Ensure continuous monitoring of security alerts and events.
  • Monitor the team’s effectiveness in detecting, analyzing, and responding to security threats.
  • Identify and address gaps in security monitoring capabilities.
• Threat Intelligence and Hunting:
  • Promote and facilitate proactive threat hunting activities.
  • Leverage threat intelligence to identify emerging threats and vulnerabilities.
  • Ensure threat intelligence is effectively used by the SOC team.
• Security Tool Management and Optimization:
  • Oversee the effective use of security tools, ensuring they are configured correctly and optimized for maximum efficiency.
  • Evaluate new security technologies and make recommendations for improvements.
  • Collaborate with other IT teams to integrate security tools and processes.
• Process Improvement and Automation:
  • Identify areas for improvement in SOC processes and workflows.
  • Recommend and implement process changes to enhance efficiency and effectiveness.
  • Drive the automation of security tasks to reduce manual efforts and improve response times.
• Reporting and Communication:
  • Provide regular reports to management on SOC activities, incident metrics, and trends.
  • Communicate security incidents and findings effectively to stakeholders.
  • Participate in security briefings and presentations.
• Compliance and Regulatory Adherence:
  • Ensure the SOC team's adherence to all relevant security policies, regulations, and compliance requirements.
  • Participate in security audits and compliance assessments.
• Knowledge Sharing and Training:
  • Facilitate knowledge sharing and collaboration among SOC team members.
  • Develop and implement training programs to enhance team skills and expertise.