ROLE PURPOSE

As the SOC Manager, you will lead the organization’s Security Operations Center, driving threat detection, incident response, and continuous monitoring activities across our enterprise environments. This role demands a strong mix of technical expertise, leadership skills, and the ability to collaborate cross-functionally to protect the organization against cyber threats.

JOB RESPONSIBILITIES

• Lead and manage daily SOC operations, ensuring timely detection, triage, investigation, and resolution of security events
• Monitor and analyze security alerts from a wide range of technologies including SIEM, EDR, firewalls, IDS/IPS, WAF, and cloud-native tools
• Direct and coordinate comprehensive incident response activities, including containment, remediation, recovery, and root cause analysis
• Conduct deep forensic investigations across endpoints, networks, and memory to assess incident scope and business impact
• Proactively hunt for threats by leveraging behavioral analytics, threat intelligence, and telemetry data to detect previously unknown risks
• Develop, fine-tune, and automate detection logic, correlation rules, and incident response playbooks to strengthen SOC effectiveness
• Integrate threat intelligence feeds and TTP frameworks (e.g., MITRE ATT&CK) to improve alert context and response accuracy
• Expand SOC telemetry by onboarding relevant log sources from cloud platforms, critical infrastructure, and business applications
• Collaborate with infrastructure, application, and cloud teams to support vulnerability remediation and reduce organizational risk
• Provide clear, timely reporting and communication to technical and executive stakeholders throughout the incident lifecycle
• Continuously evaluate and improve SOC workflows, metrics, and procedures to ensure alignment with industry best practices and business goals

Education & Special Training 
Essential

• Degree/Diploma in Computer Technology, Computer Science, Information Security, Cybersecurity, Computing, Software Engineering, IT or equivalent

Desirable

• Equivalent experience and certifications (e.g., eCTHP, eCIR) are also considered

Experience
Essential 

• Minimum of 5 years of progressive experience in cybersecurity, including at least 3 years in a SOC leadership or management role
• Experience in forensics, malware analysis, threat intelligence
• Exposure to red team/blue team exercises or purple teaming methodologies
• Significant experience in participating incident response, vulnerability management, and security awareness training in fast-paced environment

Desirable

• Experience in the financial or banking sector

Knowledge & Skills 

• Hands-on experience with enterprise-grade SIEM, EDR, and cloud security monitoring solutions (e.g., AWS, Azure, GCP)
• Strong understanding of threat actor tactics, techniques, and procedures, and practical use of adversary emulation frameworks
• Proven ability to lead and mentor high-performing security teams in a high-pressure and fast-paced environment
• Excellent analytical, communication, and decision-making skills, with the ability to interface effectively across technical and business functions
• Familiarity with MITRE ATT&CK, NIST CSF, ISO 27001, or MAS TRM compliance frameworks

Languages

• Excellent verbal and written communication skill; both in Myanmar and English