Soc Technical Lead

Siga leyendo para comprender completamente lo que este trabajo requiere en cuanto a habilidades y experiencia. Si su perfil encaja, presente su candidatura.

Since 2011, SQUAD Group has been a key player in the cybersecurity landscape. We partner with leading organizations to protect their information systems through a comprehensive 360° offering of consulting, integration, expertise, and managed services.

We believe in a collaborative approach to cybersecurity, where experts and clients work hand-in-hand to anticipate threats and protect critical infrastructure.

As part of our growing team, we're seeking a SOC Technical Engineer . Based in Barcelona, this role will put you at the core of a top-tier Incident Response team, defending the digital assets of a company that connects hundreds of millions of people every month.

You are the cornerstone of our Security Operations Center engagement, providing technical leadership, architectural direction, and operational oversight. You’ll ensure the design, optimization, and integration of the SOC’s security stack, including SIEM, EDR, DLP, and NIDS technologies.

You’ll coordinate daily operations, guide analysts across all tiers, and serve as the primary bridge between your SOC team and internal leadership. Your role ensures operational excellence, effective incident management, and continuous enhancement of detection and response capabilities.

• Lead environment assessments, including Elastic SIEM audits and detection rule gap analysis.
• Define escalation workflows, playbooks, and operational documentation.
• Oversee SOAR automation and orchestration, driving efficiency across response processes.
• Coordinate and mentor SOC members (L1–L3), ensuring high-quality investigations and continuous improvement.
• Act as the senior escalation point for complex security incidents and client communications.
• Align SOC strategy with the client’s objectives, maintaining performance metrics and operational KPIs.

• 10+ years of SOC or cybersecurity experience with leadership responsibilities.
• Deep expertise across SIEM, EDR, and SOAR technologies (preferably Elastic & CrowdStrike).
• Strong background in threat detection, automation, and incident response architecture.
• Excellent communication and stakeholder management skills.

BTL2, GIAC GCIH, Elastic Certified Engineer, CrowdStrike Certified Falcon Administrator

• Personalized Growth : We help you build a training and certification plan aligned with your professional goals through our SquadeXpérience.
• Expertise Development : Participate in internal events like our MixYourTalent webinars and monthly CTF sessions.
• Visibility : Attend major industry conferences and contribute to our #TheExpert technical blog.
• Culture : Enjoy a dynamic and close-knit environment with after-work events and team gatherings that foster great camaraderie.