Team Lead, Security Operations Center (SOC)

Your role, your impact

As a Security Operations Center (SOC) Team Lead, you'll play a key role in protecting the organization against evolving cyber threats. Reporting to the Chief Information Security Officer, you'll lead day-to-day security monitoring and incident response activities, provide insights to security leadership, and contribute to reducing risk and strengthening the organization's overall cyber defense posture.

Your day-to-day

• Lead and mentor SOC analysts, providing technical guidance, coaching, and workload coordination;
• Oversee real-time monitoring of security alerts from SIEM, EDR, and related security technologies;
• Investigate security incidents using established playbooks and act as the primary escalation point for complex incidents;
• Ensure accurate documentation of investigations and incident reports;
• Drive continuous tuning and optimization of SIEM rules, detection logic, and alerting workflows;
• Maintain SOC dashboards, metrics, and KPIs, reporting trends and risks to make recommendations to leadership;
• Support incident response exercises and ongoing SOC training activities;
• Contribute to the improvement of SOC processes, runbooks, and standard operating procedures;
• Collaborate with IT and cloud teams to ensure security monitoring and logging are integrated into new systems and services.
  
  

Keys to your success

• 7 to 10 years of experience in cybersecurity, security operations, or security engineering roles;
• Strong hands-on experience in SOC operations, threat detection, and incident response;
• Solid understanding of attacker tactics, techniques, and procedures, aligned with MITRE ATT&CK;
• Expertise in security tools including SIEM, EDR, SOAR, log analysis, and network security technologies;
• Demonstrated leadership experience, including team leadership, shift lead, coaching, or mentoring responsibilities;
• Ability to analyze complex security events and communicate findings clearly to technical and non-technical stakeholders;
• Strong problem-solving skills and sound judgement to handle high-severity incidents;
• Strong understanding of cybersecurity fundamentals, ISO 27001 controls framework, and common threat vectors.
  
  

Extra edge

• Experience securing cloud environments such as AWS and/or Azure;
• Relevant security certifications such as Security+, GCIH, GCIA, or CISSP;
• Experience contributing to SOC maturity initiatives, automation, or detection engineering improvements.
  
  

Language Skills

• English: Proficient
  
  

Our mission, your future

As a global network of trusted advisors, we create cutting-edge technological solutions to overcome today's challenges and anticipate tomorrow's needs. It all starts with the collaboration of a diverse team of passionate innovators, each driven to make a difference. Together, we challenge the status quo and push each other to new heights.

Ready to leave your mark on engaging mandates and shape the future through digital transformation and strategic consulting Take your ambitions to the next level and discover your next exciting challenge with us!

Our commitments

• Our authenticity is our strength: The diversity of our backgrounds, experiences, thoughts and insights is our competitive advantage. We foster a collaborative environment where we embrace our authenticity and leverage our unique perspectives to collectively build the future we all envision.
• An inclusive path to success: Fostering an environment where you can thrive starts with ensuring an accessible recruitment process. If you require any accommodations , we welcome you to contact us. For more information, please visit our accessibility page: https://www.alithya.com/en/accessibility .