Remote SOC Team Leader

Logo of BlueVoyant

BlueVoyant

πŸ“Remote - Worldwide

Job highlights

Summary

Join BlueVoyant as a SOC Team Lead to help global customers manage their IT security. As a technical expert and defensive strategist, you'll guide analysts through active intrusions, aid clients in taking action, and build a culture of client-first detection and response.

Requirements

  • US Citizenship required for this role
  • Able and willing to work in a 24/7/365 environment, including nights and weekends, on a rotating shift schedule
  • Experience managing technical individual contributors, including providing feedback, monitoring quality, and prioritizing work
  • Strong customer communications skills, including articulating complex or urgent technical data and scenarios to non-technical audiences
  • Ability to handle high pressure situations in a productive and professional manner
  • Knowledge of and experience with intrusion detection/prevention systems and SIEM software
  • Advanced knowledge and understanding of network protocols and devices
  • Advanced experience with Mac OS, Windows, and Unix systems
  • Ability to analyze event logs and recognize signs of cyber intrusions/attacks
  • Advanced written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language
  • Familiarity with tools such as Malware Sandboxes, Sentinel, Splunk, EDR solutions
  • Strong knowledge of the following: Enterprise Cloud Solutions (Azure, GCP, AWS)
  • Modern authentication systems and attacks (SSO, OATH, Entra, etc.)
  • SIEM workflows (preferably Sentinel and Splunk)
  • Packet Analysis
  • Malware Detection, to include dynamic and light static analysis
  • Network Monitoring metadata (web logs, firewall logs, WAF/IDS)
  • Email Security and common business email compromise attacks
  • Vulnerability Identification and correlation to attacker behavior

Responsibilities

  • Supervise and mentor Security Analysts during a standard working team/shift
  • Manage analyst workload and workflows while acting as an escalation point for your team
  • Communicate with BlueVoyant clients throughout incident escalations and lifecycle
  • Supervise operations in deterring, identifying, monitoring, investigating, and analyzing attacks
  • Support analyst alert triage to identify whether appropriate escalations occurred, and monitor for patterns indicating late-stage incident lifecycle alerts requiring incident response
  • Provide quality control and feedback for analyst investigations
  • Participate in the response, investigation, and resolution of security incidents
  • Ensure teams are aware of operating procedures and any changes or additions
  • Aid in keeping operational documentation up to date
  • Provide incident investigation, handling, and response, including incident documentation
  • Serve as the technical escalation point and mentor for your analyst team
  • Perform triage of incoming issues (assess the priority, determine risk)
  • Maintain a strong awareness of the current threat landscape

Preferred Qualifications

  • Experience in network/host vulnerability analysis, intrusion analysis, digital forensics, penetration testing, or related areas
  • 5+ years of hands-on SOC/TOC/NOC experience
  • GCIA and/or GCIH required. GCFA, GCFE, CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred
  • Familiarity with technologies such as Sentinel, Splunk, Microsoft Defender suites, Crowdstrike Falcon, SentinelOne
  • Familiarity with Group Policy, Intune, Virtualization, and other IT Infrastructure tools
  • Understanding and/or experience with one or more of the following programming languages: JavaScript, Python, Lua, Ruby, GoLang, Rust

Benefits

US Citizenship required for this role

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs

Please let BlueVoyant know you found this job on JobsCollider. Thanks! πŸ™