SOC Technical Leader

Description

Job Summary: We are seeking an SOC Technical Leader to provide technical leadership for a 24x7 operational team, optimize cybersecurity processes, ensure compliance and quality, and play a key role in incident management. Key Highlights: 1. Technical and operational leadership of a 24x7 SOC team 2. Development and optimization of cybersecurity processes 3. Strong hands-on experience in security incidents Since 2011, **3 AM IT Services** has stood out as a reference in IT solutions. With nationwide operations, we offer staff augmentation, service desk, field support, and customized projects. Now is your chance to join a team committed to excellence and innovation! ***Contract Type: PJ*** ***Work Mode: Hybrid, 3 days per week at the office*** ***Location: Santo Amaro/SP*** **SOC Technical Leader** Responsibilities: * Technical and operational leadership of an SOC team (24x7\) comprising N1, N2, and N3 roles; Process Development and Optimization: Design, review, and optimize cybersecurity processes to ensure efficiency and compliance with standards and regulations; * Quality Management: Implement and monitor quality management programs, ensuring cybersecurity practices adhere to established standards (ISO/IEC 27001, NIST, etc.); * Internal Audits: Conduct internal security audits to identify gaps and implement improvements to strengthen security policies and practices; * Documentation: Maintain up-to-date documentation of cybersecurity processes and procedures to facilitate team communication and training; * Compliance: Ensure organizational adherence to cybersecurity laws, regulations, and internal policies; * Education and Training: Develop and deliver training programs for the team, focusing on security best practices and policies; * Continuous Monitoring: Implement continuous monitoring systems for process quality and perform adjustments as needed; * Technical leadership across all SOC team activities, including activity mapping, resource allocation, and follow-up on results; * Responsible for team shift scheduling, escalation matrices, and other administrative controls; * Responsible for competency matrix and development planning; Hands-on profile with experience leading, engaging, planning, and executing work collaboratively with other technical areas such as Systems, Infrastructure, Architecture, etc.; * Strong hands-on experience in security incidents, acting as owner, engaging other technical teams for problem resolution, participating in/conducting crisis rooms, and performing incident investigation and response; * Review of incident reports. * Responsible for SLA compliance; * Monitor shift handovers and ensure proper updates to operational controls; * Act as mentor to other Security team members and collaborate in generating documentation and training materials; * Ability to propose continuous improvement initiatives aimed at increasing Information Security maturity and resilience, including procedures, controls, security metrics, and case studies; * Development and review of KPIs; * Effective and value-driven communication of Security operations to leadership. **Requirements \| Qualifications:** * Analytical thinking, strong interpersonal communication skills, and ability to handle highly complex tasks; * Minimum 5 years of experience in Information Security; Bachelor’s degree and specialization in Cybersecurity or related fields (completed); * Proficiency in operating systems and security platforms within the portfolio; * Knowledge of security tools for detecting, preventing, and mitigating intrusions; * Technical English proficiency for opening and tracking tickets. Preferred: Experience in large enterprises; * Experience with Cloud Security platforms and solutions; * Knowledge of Information Security platforms; * Familiarity with CrowdStrike, DeepSecurity, Guardicore, Netskope, Vision One; * Possession of Security certifications. Knowledge of Cybersecurity Frameworks (CIS, NIST CSF, ISO 27001, Cyber Kill Chain, MITRE ATT\&CK); * Knowledge of technologies such as Antispam, Antivirus, Proxy, SIEM, among others; * Experience working in highly complex and critical environments; Experience with Linux and Windows environments; Minimum Educational Requirement: Bachelor’s Degree