Job Summary As SOC Supervisor, I lead day-to-day Security Operations Center (SOC) activities in alignment with corporate security goals and industry frameworks such as NIST CSF , MITRE ATT&CK , and ITIL . My role ensures that analysts and team leads are equipped with the right tools, processes, and documentation to effectively detect, investigate, and respond to cyber threats—maintaining strong SLA/KPI performance and high customer satisfaction. Key Responsibilities Provide strategic and operational leadership to a multidisciplinary SOC team delivering 24/7 threat monitoring , incident response , and cyber defense . Align SOC capabilities with business goals and frameworks (NIST, MITRE, ITIL). Lead and manage incident response , acting as Incident Manager for major outages. Oversee real-time security event monitoring using SIEM tools (e.g., MS Sentinel, Wazuh). Drive automation , playbook optimization, and process standardization. Collaborate with IT Ops, Service Desk, Engineering, and vendors to expedite issue resolution. Maintain and enhance documentation (SOPs, incident reports, threat metrics). Serve as liaison with internal stakeholders and external clients on SOC performance and risk posture. Manage performance reviews, hiring, mentoring, and goal tracking for team members. Skills & Experience Experience: 4+ years in SOC, NOC, or related security roles. 3+ years supervising or managing security teams (5+ members). Strong background in incident handling, threat detection, and SIEM operations. Hands-on experience with Windows Server , Azure , AWS , and Active Directory . Certifications: Holds one or more: GIAC (GCIH), Microsoft (SC-200, SC-300, AZ-500), AWS Security Specialty, EC-Council (CEH, NDE). ITIL certification (Nice to have). Technical Skills: SIEM tools (MS Sentinel, Wazuh), SOAR platforms. Cloud security (AWS, Azure), email security (MS 365), virtualization (VMware). Familiar with NIST CSF, MITRE ATT&CK, ISO 27001. Patch management, disaster recovery, business continuity planning. Threat intelligence platforms (e.g., ThreatConnect, Recorded Future) and feed integration. Knowledge of TTP mapping, cyber threat lifecycle, and response strategies. Soft Skills: Strong leadership in high-pressure 24/7 environments. Skilled in communication, collaboration, and client relationship management. Analytical thinker, organized, adaptable, and committed to continuous improvement. Fluent in English and Spanish (C1+ level) . #J-18808-Ljbffr