We are seeking a highly skilled Cybersecurity Team Lead to lead and manage enterprise security operations and ensure the protection of critical infrastructure, systems, and data. The ideal candidate will oversee 24/7 Security Operations Center (SOC) activities, manage security monitoring platforms, lead incident response efforts, and ensure compliance with international security frameworks and regulatory requirements.

This role requires strong leadership, hands-on experience with SIEM platforms, deep knowledge of security architecture, and the ability to collaborate with cross-functional teams and senior stakeholders.

Key Responsibilities

Security Operations & SOC Management

• Lead and manage 24/7 Security Operations Center (SOC) operations including L1, L2, and L3 security analysts.
• Oversee SIEM platforms such as Microsoft Sentinel, Splunk, and IBM QRadar to ensure effective monitoring and threat detection.
• Ensure proper log onboarding, correlation rules, and use case development across security platforms.
• Continuously monitor and improve incident detection, triage, and response processes.
• Lead incident response activities and coordinate with IT, legal, and management teams during security incidents.
• Conduct Root Cause Analysis (RCA) for major security incidents and implement corrective measures.
• Define and track key SOC performance metrics including MTTD (Mean Time to Detect), MTTR (Mean Time to Respond), and false positive rates.
• Integrate threat intelligence feeds and drive proactive threat hunting activities.

Cybersecurity Strategy & Program Management

• Lead the implementation and delivery of enterprise cybersecurity programs.
• Provide strategic direction on enterprise security architecture, cloud security (Azure/AWS), and incident response frameworks.
• Work closely with C-level stakeholders and senior management to align security initiatives with business objectives.

Governance, Risk & Compliance (GRC)

• Develop, implement, and maintain Information Security policies, standards, and procedures.
• Ensure compliance with international security frameworks including:
• ISO/IEC 27001
• NIST Cybersecurity Framework
• SAMA Cyber Security Framework
• Conduct enterprise risk assessments and maintain the organizational risk register.
• Lead internal and external security audits.
• Ensure compliance with relevant regulations such as PDPL, GDPR, and other applicable data protection regulations.
• Perform third-party and vendor risk assessments.
• Develop and track risk treatment and mitigation plans.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
• 8+ years of experience in cybersecurity with 3+ years in a leadership role managing SOC or security operations teams.
• Strong hands-on experience with SIEM platforms (Microsoft Sentinel, Splunk, QRadar).
• Proven experience in SOC operations, incident response, threat detection, and threat intelligence.
• Solid understanding of enterprise security architecture and cloud security (Azure/AWS).
• Experience implementing security governance and compliance frameworks.

Preferred Certifications

Candidates with the following certifications will be highly preferred:

• CISSP – Certified Information Systems Security Professional
• CISM – Certified Information Security Manager
• CRISC – Certified in Risk and Information Systems Control
• OSCP – Offensive Security Certified Professional
• Azure Security / AWS Security Certifications

Key Skills

• Security Operations Center (SOC) Management
• SIEM Platforms (Sentinel, Splunk, QRadar)
• Incident Response & Threat Hunting
• Security Architecture & Cloud Security
• Governance, Risk & Compliance (GRC)
• Risk Management & Security Audits
• Leadership & Stakeholder Management