The vacancy is well-defined but lacks compensation details, impacting overall attractiveness to applicants.
Check Match โ Just drop your CV
See your fit for SOC Lead (Security Operations Center) in seconds.
Overview
Join Crypto.com as a SOC Lead to oversee global cybersecurity operations, ensuring 24/7 monitoring and advanced threat investigations in a multi-cloud environment. We are looking for a highly technical SOC Lead to spearhead our Global Cybersecurity Operations team. In this role, you will own the 24/7/365 security operations ecosystem, driving the strategic and technical evolution of our modern cybersecurity operating model. You will be responsible for ensuring continuous monitoring coverage, serving as the ultimate technical escalation point, and architecting an advanced defense infrastructure. We are scaling a modern, multi-cloud, intelligence-driven SOC that heavily leverages AI and cutting-edge automation. This role requires a hands-on technical leader who can seamlessly pivot between deep-dive cloud investigations, code-driven automation project management, and mentoring a high-performing engineering team.
What you'll do
- โข24/7 Operational Oversight & Escalation โ Design, build, and optimize the operational frameworks to support 24/7 monitoring. Serve as the critical escalation point, available to be paged to lead the response during high-impact security incidents.
- โขAdvanced Investigations โ Lead comprehensive, deep-dive investigations across all threat vectors - including endpoint, network, email, and identity - with a primary focus on complex multi-cloud environments (AWS, Azure, GCP). Utilize CNAPP, EDR/XDR, and digital forensics tools to track sophisticated threat actors and reconstruct full-kill chain breaches.
- โขAI & Automation Strategy โ Architect and drive the roadmap for our agentic SOC. Oversee the development of autonomous AI-driven agents and optimize complex SOAR playbooks to minimize response times.
- โขTechnical Project Leadership โ Lead SOC initiatives focused on optimizing EDR platforms, enhancing Email Security Gateways, and driving proactive threat-hunting campaigns. Partner with dedicated Detection and SIEM Engineering teams by contributing operational threat insights.
- โขIncident Command & Response โ Act as the technical Incident Commander during critical security events. Coordinate end-to-end incident response lifecycle tasks, making high-stakes decisions on mitigation and isolation.
- โขMentorship & Talent Development โ Actively mentor and elevate the technical skillsets of SOC analysts. Establish continuous learning frameworks, conduct technical tabletop exercises, and build a culture of engineering excellence.