Job Title

Job Summary:We are looking for a strategic, hands-on SOC Manager who can build our SOC capability from the ground up. This includes the design, deployment, and management of SOC infrastructure, processes, and people. You will play a critical role in defining Incident Response (IR) as a Service, implementing SOAR technologies, and developing and maintaining security playbooks.Key Responsibilities:SOC Build & LeadershipLead the end-to-end buildout of Teceze’s Security Operations Center (people, process, and technology).Design SOC architecture and select the right mix of tools and platforms (SIEM, SOAR, EDR, etc.).Establish SOC KPIs, SLAs, escalation protocols, and service delivery standards.Security Tools & Platform ManagementHands-on experience and decision-making with tools like Splunk, IBM QRadar, LogRhythm, Microsoft Sentinel, ArcSight, and CrowdStrike, Palo Alto XSOAR, etc.Evaluate and integrate SOAR platforms for automation and orchestration of incident response workflows.Incident Response as a ServiceDefine and operationalize IR-as-a-Service for Teceze customers.Establish incident lifecycle management, RCA, and client reporting mechanisms.Lead the development of runbooks, playbooks, and standard operating procedures (SOPs).Playbooks & AutomationBuild custom playbooks for threat detection, triage, containment, and recovery.Automate repetitive SOC tasks using SOAR tools to improve response time and efficiency.Integrate threat intelligence feeds and enrichment into incident workflows.Team Management & CollaborationRecruit, mentor, and manage SOC analysts (L1, L2, L3).Provide regular training and upskilling on tools, threat landscape, and best practices.Collaborate with internal IT, DevOps, and customer-facing teams.Required Skills & Qualifications:Proven experience in building and leading a SOC from scratch.8–12 years of experience in cybersecurity operations.Deep hands-on expertise in SIEM, SOAR, EDR, and threat intelligence platforms.Strong understanding of MITRE ATT&CK, NIST, and SANS frameworks.Experience designing and executing incident response and business continuity plans.In-depth knowledge of network security, endpoint protection, cloud security (Azure, AWS), and compliance standards (ISO 27001, GDPR, etc.).Excellent communication skills – ability to present to leadership and customers.Preferred Certifications:GIAC GCIA / GCIH / GMONCertified SOC Analyst (CSA)CISSP / CISMCEH / OSCPAzure / AWS Security Certifications#Teceze #itservices #cybersecurity