Soc lead
SOC Team Lead (Splunk SIEM)
Location:
ParisMission Length:
1 year initial contractJob Overview:
We are seeking an experienced and driven SOC (Security Operations Center) Team Lead to manage a team of 15 cybersecurity professionals. As the SOC Team Lead, you will be responsible for overseeing the day-to-day operations of the SOC, with a specific focus on leveragingSplunk SIEM
to detect, analyze, and respond to security incidents. You will lead and mentor a team of analysts, ensuring the SOC is efficient, effective, and capable of mitigating security threats in a timely and professional manner.Key Responsibilities:
Leadership & Management:
Lead, supervise, and mentor a team of 15 SOC analysts, ensuring they meet performance objectives and maintain a high standard of security monitoring and incident response.Foster a positive and collaborative team culture, encouraging continuous learning and professional growth.
Conduct regular one-on-one meetings with team members to provide feedback, set goals, and address any performance or developmental needs.
Ensure the team is fully trained and capable of handling security incidents effectively.
Splunk SIEM Operations:
Oversee the daily operation and optimization ofSplunk SIEM
to monitor, detect, and respond to security threats and incidents.
Manage the configuration, customization, and fine-tuning of Splunk to ensure effective log analysis and correlation of security events.
Develop, maintain, and continuously improve custom dashboards, reports, and alerts in Splunk to ensure timely and accurate detection of threats.
Incident Response & Threat Management:
Lead the team in responding to security incidents, conducting thorough analysis, and coordinating appropriate remediation efforts.Work closely with other departments (e.g., IT, Network, Legal, Compliance) to investigate and resolve security issues.
Identify emerging security threats and work with the team to adapt SOC monitoring processes to mitigate new risks.
Reporting & Documentation:
Prepare and deliver regular reports on SOC activities, incidents, and metrics to senior management and stakeholders.Maintain clear, thorough documentation of security incidents, processes, procedures, and best practices for future reference.
Track and report on KPIs and SLAs to measure SOC performance and ensure continuous improvement.
Strategy & Process Improvement:
Collaborate with leadership to define and execute SOC strategies, ensuring the team is aligned with organizational goals and objectives.Identify opportunities for process improvements and automation to enhance efficiency and response time.
Stay up-to-date on the latest cybersecurity trends and Splunk features to continually evolve SOC capabilities.
Collaboration & Cross-Functional Communication:
Serve as a liaison between the SOC team and other departments, ensuring timely communication during security incidents or ongoing investigations.Build strong relationships with stakeholders to align security operations with business goals.
Provide expertise and guidance on security best practices to non-technical teams.
- share
Related jobs
Saviynt Developer
PracticeCloud & Infrastructure
Location
Remote - Finland
Type
Contract
Saviynt Developer Location: Remote (Preferred: Sweden or Finland) Contract Duration: 6 months (Potential for Extension) Working Hours: 7.5 hours per d...
Explore this job
SOC Analyst
PracticeCloud & Infrastructure
Location
Brussels, BELGIUM 1210 - Belgium
Type
Contract
SOC Analyst L3 – Hybrid – 1+ year contact (12 month renewable) Your future job: Cyber Defence Security Logging & Monitoring ExpertThe purpos...
Explore this job
CyberArk Admin
PracticeCloud & Infrastructure
Location
Madrid - - Spain
Type
Contract
Location: Hybrid (Montreuil) About Us:...
Explore this job
WAF Engineer (Web Application Firewall)
PracticeCloud & Infrastructure
Location
n/a, GERMANY - - United Kingdom
Type
Contract
We are seeking a highly skilled WAF (Web Application Firewall) Engineer Job Title: WAF Engineer Remote from Europe Job Description: We are seeking a ...
Explore this job
SOAR Consultant
PracticeCloud & Infrastructure
Location
Luxembourg - - Luxembourg
Type
Contract
Next Ventures is working with a Luxembourg-based managed security service provider who is hiring for a CORTEX XSOAR Specialist. This will be along lon...
Explore this job
SOC Analyst
PracticeCloud & Infrastructure
Location
Utrectcht - - Netherlands
Type
Contract
Our client is seeking a SOC Analyst for a long-term contract position in the Utrecht area. This person will be responsible for proactively and iterati...
meer...
Naar vacature
Meer vacatures van Next Ventures