SOC Lead - XSOAR (m/f/d)

A leading organization focused on delivering advanced cybersecurity solutions and operational excellence. The company is seeking a SOC Lead to manage and lead the Security Operations Center team, responsible for monitoring, detecting, responding to, and mitigating security incidents. This role ensures the efficiency and effectiveness of security monitoring processes, mentors SOC team members, and drives continuous improvement of SOC capabilities.

• Lead day-to-day SOC operations, ensuring 24/7 coverage and continuous monitoring of security events.
• Oversee detection, triage, investigation, and response to security incidents.
• Act as the primary point of contact during security incidents, coordinating efforts with internal teams and external stakeholders.
• Develop and implement SOC processes, procedures, and incident response playbooks.
• Ensure timely escalation and mitigation of security risks.
• Conduct proactive threat hunting to identify potential threats.
• Lead forensic investigations, root cause analysis, and post-incident reviews.
• Monitor SOC performance metrics and provide regular reports to senior management.
• Collaborate with IT, network, and application teams to strengthen organizational security.
• Mentor and train SOC team members for continuous skill development.
• Ensure compliance with security standards and regulations (e.g., NIST, ISO, GDPR).
• Stay updated on emerging threats, technologies, and security trends.

• Incident Response
• Threat Management
• Vulnerability Management
• IPS (Intrusion Prevention Systems)
• Scripting (Python / PowerShell)
• SOAR (Security Orchestration, Automation, and Response)

• Bachelor’s degree in Computer Science, IT, Cybersecurity, or equivalent experience.
• Proven leadership experience managing SOC teams.
• Strong knowledge of security tools and technologies (SIEM, IDS/IPS, EDR).
• Hands‑on experience with incident response and forensic investigations.
• Familiarity with threat intelligence platforms and techniques.
• Strong analytical and problem‑solving skills.
• Excellent communication and interpersonal skills.
• Preferred certifications: CISSP, CISM, CEH or similar.
• Experience with cloud environments (AWS, Azure).
• Knowledge of compliance frameworks (GDPR, PCI‑DSS).
• Experience with automation and orchestration tools (SOAR platforms).

With over 28 years of experience, we have come to understand that innovation is the only way to provide agile, practical solutions that transform businesses and careers. Our resourcing and smart services help you to realize tomorrow’s potential. Discover the amazing things possible when you bring the right people and the right technologies together. At Halian, we recognize that diversity, equity, and inclusion (DEI) are essential to building high‑performing teams for our clients. We are committed to connecting organizations with top talent from all backgrounds, ensuring that every individual feels valued, respected, and empowered to contribute their unique perspectives. We encourage applications from all qualified candidates, regardless of race, gender, disability, or any other characteristic that makes them unique. By fostering diverse and inclusive workplaces, we help our clients drive innovation, enhance collaboration, and better reflect the communities they serve.