Lead - SOC Analyst (SIEM & SOAR)

Job Description Job Summary We are seeking a Lead SOC Engineer with strong expertise in SIEM administration, SOAR automation, and security monitoring across both enterprise and cloud environments. The role will focus on enhancing SOC capabilities, improving threat detection, automating response processes, and ensuring visibility across on-premises and cloud infrastructure. Key Responsibilities - Administer, maintain, and optimize SIEM platforms (Splunk, Sentinel, QRadar, etc.). - Design and implement SOAR playbooks to automate security operations and incident response. - Onboard and manage log sources from enterprise infrastructure, applications, and cloud environments. - Develop and tune detection rules, correlation searches, dashboards, and alerts. - Support incident investigations, threat hunting, and response activities. - Integrate SIEM/SOAR with EDR, IAM, cloud security, email security, and threat intelligence platforms. - Collaborate with infrastructure, cloud, and security teams to improve monitoring coverage and security posture. - Mentor SOC analysts and drive continuous improvement initiatives.