Assistant SOC Manager
We’re seeking a skilled and detail-oriented Assistant SOC Manager to support the operations of our multi-tenant Security Operations Center (SOC) within a Managed Security Services Provider (MSSP) environment. This is a key leadership role focused on ensuring operational excellence, driving continuous improvement, and staying ahead of an ever-evolving threat landscape to safeguard our clients.
Key Responsibilities SOC Operations & Team Management
- Oversee daily SOC operations across multiple client environments, ensuring timely detection, analysis, and response to security incidents.
- Supervise, mentor, and develop SOC analysts, promoting a culture of technical excellence and collaboration.
- Manage 24/7 coverage, shift coordination, and escalation processes to maintain seamless operations.
- Develop, maintain, and enforce SOC policies, standard operating procedures (SOPs), and incident response playbooks.
- Ensure SOC practices align with industry regulations and client-specific compliance frameworks (e.g., ISO 27001, GDPR, PDPA).
- Conduct periodic reviews to ensure documentation and processes reflect evolving technologies and threat landscapes.
- Define, measure, and report on key performance indicators (KPIs) and service level agreements (SLAs).
- Produce operational dashboards and reports for internal and client stakeholders, highlighting incident trends and SOC performance.
- Identify and implement process improvements based on performance metrics and feedback.
- Stay informed on emerging threats, vulnerabilities, and attack techniques through global and regional threat intelligence feeds.
- Collaborate with intelligence teams to contextualize and integrate threat data into detection and response strategies.
- Support proactive threat hunting and participate in red/blue team exercises to validate SOC readiness.
- Serve as a technical point of contact during incident investigations and post-incident reviews.
- Support new client onboarding, including log source integration, rule tuning, and documentation setup.
- Ensure high-quality, consistent service delivery across all client engagements.
We are keen to see
- Bachelor’s degree in Cybersecurity, Computer Science, or related field.
- 5+ years in cybersecurity, inc 2+ years in a SOC/MSSP environment.
- Exp managing or mentoring technical teams
- Proficient with SIEM platforms (e.g., Splunk, QRadar, LogRhythm), EDR tools, and SOAR technologies.
- Strong understanding of network security, malware analysis, and incident response methodologies.
- Familiarity with multi-tenant environments and client-specific security requirements.
- Scripting and automation skills (e.g., Python, PowerShell) are advantageous.
- Bonus - GIAC (e.g., GCIH, GCIA, GCFA), CEH, CISSP, or equivalent
- Strong leadership, communication, and interpersonal skills.
- Ability to manage multiple priorities and client expectations in a fast-paced environment.
- Excellent analytical and problem-solving abilities
- Base Salary: AUD 125K – 140K + super
- Performance Bonus: 10% of annual base
- Hybrid Work: 3 days in office, with flexibility for client visits
Has to be based in Melbourne. For more info please APP:LY or email peterm@halcyonknights.com.au
