Oversee 24/7/365 SOC operations, leading a team of cybersecurity analysts in detection, triage, escalation, and monitoring, ensuring effective coordination of all incident response activities
Job Summary
Oversee 24/7/365 SOC operations, leading a team of cybersecurity analysts in detection, triage, escalation, and monitoring, ensuring effective coordination of all incident response activities.
Own the administration, fine-tuning, and optimization of all SOC tools, including SIEM, SOAR, EUBA, Threat Intelligence, Data pipelines, Security Data Lake, and NDR, while leading the transformation to an AI-powered SOC.
Develop detailed incident response playbooks, implement 24x7x365 monitoring and reporting procedures, and provide regular situational awareness updates to senior management to strengthen Bloom Energy's cyber defence posture.
Matching Summary
Oversee 24/7/365 SOC operations, leading a team of cybersecurity analysts in detection, triage, escalation, and monitoring, ensuring effective coordination of all incident response activities.
Skills & Requirements
Must-have
24/7 SOC operations
Incident response coordination
SIEM, SOAR, EUBA, Threat Intelligence
Develop incident response playbooks
Monitoring and reporting procedures
AI-powered SOC transformation
Nice-to-have
Cross-functional team coordination
Analyst proficiency development
Root-cause and trend analysis
Emerging threat advisement
Key Requirements
Bachelor's degree in cybersecurity, information systems, or related technical field
12-15 years of experience in cybersecurity domain
5+ years managing Security Operations team
Experience with SIEM, SOAR, IDS/IPS, EDR, NDR, Threat Intelligence
Familiarity with Splunk, Recoded Future, Elastic, Tenable
Knowledge of MITRE ATT&CK and NIST 800-61
Experience implementing SOC metrics, KPIs, and automation