SOC Lead - UAE National

We are seeking a highly motivated and experienced SOC Lead to join our growing Security Operations Center. The successful candidate will be responsible for leading a team of security analysts in the detection, response, and mitigation of cyber threats. This role requires strong leadership, technical expertise, and a proactive approach to cybersecurity.

• Lead, mentor, and develop a high-performing team of security analysts.
• Assign tasks, monitor performance, and provide constructive feedback.
• Foster a positive and collaborative team environment.

• Oversee the day-to-day operations of the SOC, including threat monitoring, incident response, and security event correlation.
• Analyze security logs, alerts, and threat intelligence feeds to identify and investigate potential threats.
• Develop and implement threat hunting strategies to proactively identify and mitigate threats.

• Lead incident response activities, including containment, eradication, and recovery.
• Develop and maintain incident response plans and playbooks.
• Conduct post-incident reviews and implement corrective actions.

• Monitor security tools and systems, including SIEM, IDS/IPS, and firewalls.
• Analyze security events and identify trends and patterns.
• Develop and tune security alerts and rules.

• Continuously improve security operations processes and procedures.
• Identify and implement new technologies and tools to enhance security capabilities.
• Stay abreast of emerging threats and cybersecurity best practices.

• Prepare regular reports on security incidents and threats.
• Communicate security risks and incidents to management and stakeholders.
• Participate in security awareness training and education programs.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• 5+ years of experience in cybersecurity roles, with at least 3 years of experience in a SOC environment.
• Proven experience leading and mentoring security analysts.
• Strong understanding of cybersecurity concepts, including threat intelligence, vulnerability management, and incident response.
• Experience with SIEM tools (e.g., Splunk, ELK Stack, QRadar).
• Proficiency in scripting languages (e.g., Python, PowerShell).
• Strong analytical and problem‑solving skills.
• Excellent communication, interpersonal, and presentation skills.
• Strong leadership, organizational, and time‑management skills.

• CISSP, CISM, CISA, CEH, or other relevant cybersecurity certifications.