Job Purpose:

The Chapter Lead in the Cyber Security operations Center (SOC) is responsible for leading and developing a team of cybersecurity professionals while ensuring the effective delivery of SOC services, including threat monitoring, detection, response, and mitigation. This role combines technical expertise, leadership, and coaching to foster a high-performing team and ensure alignment with organizational cybersecurity goals.

Key Responsibilities:

1. Team Leadership and Development:

• Act as a people manager for SOC analysts, engineers, and other team members within the chapter.
• Provide mentorship, coaching, and career development opportunities for team members.
• Foster a culture of continuous learning and improvement, encouraging team members to stay updated on the latest cybersecurity trends, tools, and techniques.
• Conduct regular one-on-one meetings, performance reviews, and feedback sessions with team members.

2. Technical Oversight:

• Oversee the day-to-day operations of the SOC, ensuring timely and effective response to cybersecurity incidents.
• Provide guidance and technical expertise to the team on threat detection, incident response, and vulnerability management.
• Collaborate with other teams to ensure the SOC's tools, processes, and procedures are effective and up to date.
• Act as an escalation point for complex incidents and provide hands-on support when needed.

3. Strategic Alignment:

• Work closely with the SOC management and other stakeholders to align SOC operations with the organization's cybersecurity strategy.
• Contribute to the development and implementation of SOC policies, procedures, and playbooks.
• Identify opportunities for process improvement and automation to enhance SOC efficiency and effectiveness.

4. Collaboration and Communication:

• Collaborate with other chapters, tribes, and business units to ensure seamless integration of SOC services into the broader cybersecurity framework.
• Act as a liaison between the SOC team and senior management, providing regular updates on team performance, incident trends, and key metrics.
• Promote cross-functional collaboration to improve the organization's overall security posture.

5. Metrics and Reporting:

• Define and track key performance indicators (KPIs) and service-level agreements (SLAs) for SOC operations.
• Prepare and present reports on SOC activities, incidents, and trends to senior leadership.
• Ensure compliance with relevant regulatory and organizational requirements.

Qualifications:

Education and Experience:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
• 8+ years of experience in cybersecurity, with at least 2 years in a leadership or management role.
• Experience working in a SOC environment is highly preferred.

Technical Skills:

• Strong understanding of cybersecurity principles, including threat detection, incident response, malware analysis, and vulnerability management.
• Hands-on experience with SOC tools such as SIEM, EDR, threat intelligence platforms, and log management systems.
• Knowledge of security frameworks and standards (e.g., MITRE ATT&CK, NIST, ISO 27001).
• Familiarity with cloud security and emerging threats.

Soft Skills:

• Excellent leadership, coaching, and team-building skills.
• Strong problem-solving and decision-making abilities.
• Effective communication and presentation skills, with the ability to convey technical information to non-technical stakeholders.
• Ability to work under pressure and manage multiple priorities.

Certifications (Preferred):

• CISSP, CISM, or CISA
• GIAC certifications (e.g., GCIH, GCIA, GCFA)
• CEH or other relevant certifications

Key Competencies:

• Leadership and People Management
• Technical Expertise in Cybersecurity
• Strategic Thinking and Planning
• Collaboration and Communication
• Problem-Solving and Decision-Making