Job overview
transforming security operations centers (socs) is a critical challenge in the cybersecurity landscape. Our organization seeks a visionary leader to spearhead this transformation, driving innovation and excellence across our client base.
* develop and execute strategic plans for modernizing soc infrastructure, leveraging xsiam as a cutting-edge platform.
* lead cross-functional teams in designing and implementing ai-driven detection and response processes, ensuring seamless integration with existing systems.
* collaborate with clients to identify key performance indicators (kpis) and develop targeted strategies for improving mean time to detection (mttd) and mean time to resolution (mttr).
* design and implement comprehensive log ingestion strategies, fostering high-quality data feeds that fuel the xsiam platform.
* architect sophisticated detection strategies and correlation rules, fortifying client defenses against advanced threats and maximizing system performance.
* identify opportunities to enhance analyst alert handling and response through automation, driving efficiency and effectiveness across the soc.
* transform ambiguity into structured action plans, driving accountability and alignment throughout client engagements.
* build and mentor high-performing professional services teams that blend consulting, engineering, and change management expertise.
requirements
* a proven track record in modernizing socs, delivering automation, ai-driven detection, and measurable improvements in mttd/mttr.
* exceptional executive presence, with strong verbal and written communication skills to engage with stakeholders from the soc analyst to the ciso.
* experience acting as a trusted advisor to senior security leaders, diagnosing challenges and delivering strategic recommendations.
* 10+ years of hands-on experience in deploying and integrating siem/security analytics solutions within large enterprise environments.
* 8+ years of experience with security operations center (soc) tooling, processes, and workflows.
* hands-on technical mastery across siem, soar, edr, cloud security, and threat intelligence.
* ability to conceive, architect, and develop effective correlation and detection rules.
* familiarity with a range of siem technologies is a plus.
* strong expertise in regular expressions (regex).
* relevant bachelor's degree or industry-recognized qualifications are a plus.
* presales experience is a plus.
* 30% travel required.
about us
our professional services team is crucial to our mission. As part of this team, you will drive customer success by providing support to clients post-sale. Our dedication to our customers doesn't stop once they sign — it evolves. As threats and technology evolve, we stay in step to accomplish our mission. You'll be involved in implementing new products, transitioning from old products to new, and fixing integrations and critical issues as they arise. We fix and identify technical problems with a pointed focus on providing the best customer support in the industry.