Team Lead, Information Security Operations

About The Position

Requirements

• Bachelor’s degree in computer science, Information Technology, or a related field, with 5–8 years of experience in Security Operations or a similar capacity, including experience leading SOC functions, mentoring analysts, and supporting high‑severity incident response.
• Proven experience responding to security incidents in hybrid environment (On Prem and Microsoft Azure) including investigations involving Entra ID (Azure AD), Microsoft Sentinel, Defender for Cloud, identity compromise, cloud workload threats, and misconfigurations
• Strong understanding of security monitoring and detection capabilities across SIEM, EDR/XDR, SOAR, UEBA, and network‑ and host‑based detection, with the ability to assess logging sufficiency, signal quality, and detection coverage to support effective investigations.
• Solid understanding of attacker techniques, vulnerabilities, and exploitation methods, with a proactive, problem‑solving mindset to identify detection gaps, anticipate emerging threats, and continuously improve SOC effectiveness.
• Demonstrated ability to operate effectively in high‑pressure environments, rapidly synthesize information, and make sound decisions, with a strong commitment to continuous learning, mentoring analysts, and maturing SOC processes, playbooks, and operations.
• Strong deductive reasoning, critical thinking, problem‑solving, and prioritization skills.
• One or more senior security certifications such as CISSP, GIAC certifications (e.g., GCIH, GCED, GCIA, or GCIR) and Microsoft security certifications such as SC‑200 or AZ‑500, or a demonstrated commitment to achieving them.
• Solid understanding of frameworks, standards, and assessments such as ISO 27001, SOC 2, PCI, NIST.

Responsibilities

• Lead day‑to‑day SOC operations and act as the primary escalation point for complex and high‑severity security incidents in a hybrid environment (On Prem and Cloud), ensuring timely and effective response.
• Drive and continuously improve detection capabilities to ensure high‑fidelity, actionable alerts aligned to enterprise risk and the evolving threat landscape.
• Proactively assess threat intelligence and emerging attack techniques, identifying where new or enhanced detections are required.
• Govern security logging and telemetry standards, ensuring logs are onboarded, sufficient, and fit for purpose to support effective detection, investigation, and response.
• Optimize and manage security tools and platforms, including tuning detections, improving signal quality, and enabling the team to effectively leverage technology for investigations and response.
• Act as a security subject matter expert across enterprise initiatives, collaborating with business and technical teams to embed security controls, assess risks, and ensure alignment with organizational policies and frameworks.
• Lead post‑incident reviews and translate lessons learned into improved detections, playbooks, and monitoring outcomes.

Benefits

• Comprehensive benefits that include Employee and Family Assistance Program (EFAP) and Wellness Essentials
• Group retirement savings plan with company match
• Paid holidays and generous paid time off
• Hybrid work arrangements
• Paid volunteer opportunities and charitable donation matching
• Employee recognition programs that include referral incentives
• Potential for performance-based incentives
• The opportunity to participate in our stock purchase plan