Lead Information Security Analyst

We’re looking for a Lead Information Security Analyst to take a key role in delivering our information security roadmap while leading day-to-day Security Operations (SOC) and Incident Response (IR) activities. This is a hands-on leadership role where you’ll combine deep technical expertise with team coordination and operational ownership. Acting as the primary technical focal point, you’ll guide incident response efforts, shape detection and monitoring capabilities, and ensure the team delivers high-quality security services. Working in a fast-paced, evolving environment, you’ll collaborate across Security Architecture, Engineering, GRC, IT, and business teams to continuously improve our ability to detect, respond to, and prevent threats.

• Act as the technical lead for SOC and Incident Response activities
• Lead and support complex security incident investigations and response efforts
• Provide hands-on guidance, mentorship, and technical direction to SOC analysts and IR team members
• Oversee and continuously improve monitoring, detection, and response capabilities
• Ensure security operations align with business priorities and risk posture
• Manage team workload, task prioritization, and resource allocation across SOC and IR
• Own and drive sprint planning, execution, and follow-ups to ensure timely delivery
• Track team performance, remove blockers, and drive operational efficiency
• Act as the escalation point for complex technical and operational issues
• Enhance and maintain security monitoring, logging, and alerting capabilities
• Oversee and contribute to vulnerability management activities
• Collaborate with Delivery, Product, and Planning teams on roadmap initiatives
• Drive improvements in automation, orchestration, and incident response processes
• Partner with stakeholders to define and implement security requirements and controls
• Lead the development and continuous improvement of security processes, playbooks, and runbooks
• Work closely with Security Architecture, Engineering, and GRC to strengthen the organization’s security posture
• Provide expert guidance on security risks, threats, and mitigation strategies

• 3+ years of hands-on experience in SOC and Incident Response (IR) operations
• Proven experience in Information Security operations with leadership responsibilities
• Strong expertise in incident response and SOC environments
• Hands-on experience with EDR/XDR technologies (e.g., Microsoft Defender for Endpoint), including detection, investigation, and response
• Demonstrated experience in threat hunting and proactive threat identification
• Experience with SIEM/SOAR platforms (e.g., Splunk)
• Strong knowledge of cloud security (AWS and/or Azure)
• Solid understanding of threat detection, investigation, and response methodologies
• Ability to lead technical discussions and drive decision-making
• Experience managing team priorities, sprints, and operational workflows
• Strong communication and stakeholder management skills
• Collaborative mindset with the ability to work across technical and non-technical teams
• Familiarity with security frameworks and standards such as NIST 800 and ISO 27001

• Hybrid work model
• Free parking in the building + free electric car charging
• Broad collective health insurance (with options for family members and extensions)
• Birthday gift + day off during your birthday month
• Refer a friend – bonus or gift card
• HitechZone membership
• Gifts on holidays and life events
• Ten Bis