{bc}
indeed

SOC Team Lead

Qode
Abu Dhabi, UAE
Full Time
Lead
Onsite
1 weeks ago
SIEM PlatformsMicrosoft SentinelSplunkIBM QRadarEndpoint Detection and ResponseCrowdStrike
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

SIEM PlatformsMicrosoft SentinelSplunk
Smart Apply

Full Job Posting

Role Overview

  • The SOC Team Lead is a senior hands on role responsible for day to day leadership of the ITHR Security Operations team.
  • You will oversee a team of SOC analysts (L1/L2/L3), own quality of detection and response, and serve as primary escalation point for significant incidents.
  • This role combines technical depth with people leadership and operational excellence.

Key Responsibilities

  • Lead, mentor, and develop a team of L1, L2, and L3 SOC analysts.
  • Serve as primary escalation point for high severity and complex incidents.
  • Conduct and oversee threat detection, alert triage, investigation, and incident response.
  • Lead threat hunting initiatives.
  • Own and continuously improve SIEM correlation rules, detection logic, use cases, and alert tuning.
  • Develop, maintain, and enforce incident response playbooks and escalation procedures.
  • Produce and review customer facing incident reports and executive summaries.
  • Manage SLA adherence across detection, triage, escalation, containment, and response.
  • Collaborate with DFIR teams on post incident reviews.
  • Coordinate with customers and internal teams during active incidents.
  • Support customer onboarding activities.
  • Stay current with threat landscape and translate insights into improvements.

Required Qualifications (Must Have)

  • 5 8 years of experience in security operations, with at least 2 years in a senior analyst or team lead capacity.
  • Proven hands on experience with SIEM platforms including rule development, log integration, alert tuning, investigation workflows, and detection engineering.
  • Experience with Microsoft Sentinel, Splunk, IBM QRadar, or similar enterprise SIEM technologies.
  • Strong practical understanding of incident response methodologies.
  • Deep understanding of attacker TTPs and strong familiarity with MITRE ATT&CK framework.
  • Hands on experience with endpoint detection and response technologies such as CrowdStrike, SentinelOne, Microsoft Defender, or equivalent.
  • Experience with network security monitoring, IDS/IPS technologies, firewall investigations, and anomaly detection.
  • Strong reporting and communication capabilities.
  • Demonstrated ability to lead, coach, and develop analysts.
  • At least one of CISSP, GCIH, GCFA, or ISO/IEC 27001 Lead Implementer or Lead Auditor certification.

Preferred Qualifications (Nice to Have)

  • Experience within a Managed SOC or MSSP environment.
  • Experience with SOAR platforms including Microsoft Sentinel SOAR, Palo Alto XSOAR, Splunk SOAR, or equivalent.
  • Familiarity with cloud security monitoring including Azure, AWS, and GCP.
  • Exposure to DFIR methodologies including memory analysis, disk forensics, malware triage.
  • Understanding of OT and ICS monitoring concepts.
  • Prior experience delivering managed security services within UAE or Middle East.
  • Familiarity with regional frameworks including UAE IA, NESA, SAMA.
  • Scripting capabilities using Python, PowerShell, or KQL.

Soft Skills & Professional Attributes

  • Calm and decisive under pressure with ability to lead teams through high severity incidents.
  • Strong written and verbal communication skills.
  • Detail oriented while maintaining visibility of broader objectives.
  • Natural mentor who contributes to analyst growth.
  • Continuous improvement mindset.
  • Operates with integrity, professionalism, and discretion.

What We Offer

  • Competitive Compensation aligned with experience and regional benchmarks.
  • Training & Certification Budget.
  • Hands on Technical Exposure across diverse customer portfolio.
  • Influence over SOC strategy, tooling decisions, and operational processes.
  • Clear Growth Path into SOC Manager, Head of SOC, or DFIR leadership roles.
  • Collaborative technology focused team culture.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Qode