Head of SOC

What makes the role special

This is a high-impact leadership role at the core of our cybersecurity strategy. As Head of SOC, you will own the 24 × 7 monitoring and operation of the Group-IB MXDR platform safeguarding our own environment and delivering managed detection and response for external customers. You’ll build and scale a world-class SOC, lead a top-tier team, and roll out cutting-edge technologies in a fast-moving, mission-driven setting.

Tasks to solve

• Lead a high-performing SOC team (analysts L1–L3, threat hunters, shift leads).
• Ensure 24/7 monitoring and rapid incident response aligned with SLAs.
• Provide a best-in-class MDR service for external clients, including onboarding, multi-tenant monitoring, threat hunting, and incident response that meet contracted SLAs.
• Develop and optimize processes for detection, investigation, and escalation of threats.
• Establish a strong KPI and reporting framework for SOC efficiency and quality.
• Drive SOC maturity and alignment with frameworks like SOC CMM, MITRE ATT&CK and NIST.
• Collaborate with global DFIR, Threat Intelligence and Investigations teams.
• Act as a point of escalation for major incidents and crisis response.

Requirements

• 5+ years of experience in Security Operations, including at least 2 years in a management role.
• Proven expertise with SOC technologies (SIEM, SOAR, EDR, log management, threat intel platforms).
• Deep understanding of cybersecurity incident response lifecycle and best practices.
• Strong knowledge of MITRE ATT&CK, NIST frameworks, and threat detection techniques.
• Hands-on experience leading distributed or shift-based teams.
• Excellent communication skills in English (Upper-Intermediate+).
• Ability to work under pressure and make decisions in high-stakes situations.

Additional requirements

• Relevant certifications such as CISSP, GCIH, GCFA are a strong advantage.
• Experience in MSSP or MDR environments is a plus.
• Familiarity with compliance requirements (e.g., GDPR, ISO 27001, SOC 2) preferred.
• Strong analytical mindset and continuous improvement attitude.
• Experience working in international or multicultural teams is a plus.

WHY CHOOSE GROUP-IB:

• Your happiness is important to us. We want every single team member to be happy.
• Continuing professional development. At Group-IB, you can choose from various paths to growth: progress as an expert, advance to a management position, try your hand in another department, relocate abroad, or launch a new business area at Group-IB.
• A team with extensive international expertise. Do you have experience but are looking for exciting challenges? By choosing us, you will be choosing complex tasks and continuously improving your skills in a fast-growing international company.
• Globally recognized technologies. Group-IB's offices are located in seven countries and our products and services are sold in 60 countries. What’s more, Gartner, IDC, and Forrester have ranked our technologies among the best in their class. We work with over 450 international partners and about 500 clients.
• A culture created by each of us. Group-IB’s employees speak many different languages and understand one another. We respect each other's beliefs, share common values, and strive toward the happiness of every employee.
• Economic stability. Group-IB's sustainable growth helps rapidly develop careers that would take years to progress as far as most other companies.

WHAT ELSE YOU SHOULD KNOW:

• Flexible schedule. Group-IB does not have fixed working hours. You choose your own schedule. We adhere to the principle advocated by Steve Jobs: “We have to work not 12 hours, and head.”
• Health. If anything goes wrong, don’t worry — we offer health insurance.
• Certificates and training courses. Group-IB specialists hold over 1,000 professional certificates, including CEH, CISSP, OSCP, GIAC, MCFE, BSI, as well as some rare ones that would be a source of pride for experts in forensics, penetration testing, and reverse engineering worldwide. We have an incentive program that helps employees achieve certifications at the company's expense.
• Challenges. A wide selection of GIB programs helps you improve soft skills, gain new competencies, and receive monetary rewards.
• The initiative is rewarded. At Group-IB, you can bring your most daring ideas to life. The company encourages technical blogging, writing articles, building sports teams, and other creative activities.

Sounds like you? Apply now!