About the role

Lead SOC Analyst at IFS responsible for protecting global SaaS platform and internal systems. Collaborating across security teams to enhance security operations, detection, and response capabilities.

Responsibilities

Act as the technical lead and primary escalation point for Security Operations and Vulnerability Management.
Provide mentorship and guidance to intermediate analysts, supporting capability development and operational consistency.
Drive team maturity, process standardization, and operational excellence across detection, response, and remediation functions.
Lead complex investigations across AWS & Azure environments, identity systems, endpoints, and SaaS infrastructure.
Oversee incident response activities including containment, remediation, and post-incident analysis.
Lead the end-to-end vulnerability management lifecycle including identification, prioritization, tracking, remediation, and validation.
Collaborate closely with Security Architecture, R&D, CloudOps, IT, and Platform teams.

8+ years of experience in security operations, incident response, vulnerability management, or related cybersecurity roles
Demonstrated experience functioning as a technical lead or team lead within a SOC or security operations environment
Strong experience with: Cloud platforms (AWS and Azure), Vulnerability management tools and methodologies, SIEM (Rapid7 preferred), SOAR, EDR/XDR
Deep understanding of: Threat landscape (cloud, SaaS, identity), Vulnerability frameworks (CVSS, MITRE ATT&CK, KEV, OWASP)
Experience building or improving security processes, tooling, and operational capabilities.
Strong cross-functional collaboration and stakeholder management skills.
Proficiency in scripting languages (Python, Bash, PowerShell, JavaScript) and KQL for advanced log analysis.
Familiarity with frameworks and regulations relevant to Copperleaf (ISO 27001, SOC 2, NIST CSF, CIS Controls, GDPR).
Expertise with Windows, macOS, and Linux systems.