SOC Manager LogRhythm SIEM

IT-Security C&T

Provide strategic leadership and operational oversight for the Security Operations Center (SOC), ensuring effective delivery of security monitoring and incident response services using LogRhythm SIEM.

Establish, enforce, and continuously improve SOC policies, procedures, playbooks, and operational standards in alignment with industry best practices.

Ensure 24x7 security monitoring, timely detection, investigation, and response to security incidents across customer and internal environments.

Serve as the primary escalation point for high severity and complex security incidents, ensuring proper coordination, communication, and resolution.

Oversee LogRhythm SIEM architecture, administration, tuning, upgrades, and overall platform health and performance.

Lead SIEM use case development, correlation rule optimization, and continuous reduction of false positives to enhance detection effectiveness.

Manage log source onboarding, data quality, retention, and compliance with contractual and regulatory requirements.

Direct and manage the full incident response lifecycle, including root cause analysis, lessons learned, and post incident reporting.

Lead, mentor, and develop SOC personnel (L1/L2/L3), including performance management, training plans, and succession planning.

Ensure effective shift scheduling, resource planning, and workload distribution to maintain service continuity.

Monitor and ensure compliance with SLAs, KPIs, internal controls, and customer contractual obligations.

Prepare and deliver operational, technical, and executive level reports on SOC performance, incidents, and risk trends.

Act as a trusted security advisor to customers and internal stakeholders, providing guidance on threat landscape and risk posture.