Senior SOC Analyst-team Lead

**Descrição da vaga**:
About The Woodbridge Group
The Woodbridge Group® a global manufacturer of foam products and just in time assembly & sequencing for diversified products offers innovative urethane and bead foam technologies, to serve the automotive industry and several other business sectors around the globe. Since its inception in 1978, the company has grown to more than 60 facilitiesthroughout North and South America, Europe and Asia Pacific. The key competitive strength for the Woodbridge Group® continues to revolve around its people and their commitmentto improve everything they do. With over 8,000 employees worldwide, The Woodbridge Group® is focused on evolvingworkplace safety, sustainable environmental stewardship and enduring customer satisfaction, in each of the marketsthey serve.
**Job Profile**:
A Senior SOC Analyst-Team lead works as part of the cybersecurity team that works 24x7 to identify, protect, detect, respond, and recover the IT and OT ecosystems. The analyst monitors of our Systems and network devices, identifying strange patterns and behaviors as well as eliminating vulnerabilities that have high probability of being exploited. The Senior analyst is responsible for identifying Cyber security issues that may pose an immediate risk to an organization’s business operations, customers, employees, suppliers, partners, or shareholders and alert them in real-time. The analyst also interacts directly with other functions on issues concerning security and provides support to cross-functional teams related to day-to-day operations as well as project-related activities.
**Requerimentos**:
**SOC Leadership & Incident Response**:

- Lead and coordinate SOC activities to detect, analyze, respond to, and prevent cyber threats and security incidents in real-time.
- Serve as the primary escalation point for complex security events and incidents, ensuring timely resolution and root cause analysis.
- Develop and maintain incident response playbooks, escalation procedures, and post-incident review processes.
- Provide 24/7 On-Call support for critical incidents as needed.

**Security Monitoring & Analysis**:

- Oversee the monitoring of security alerts from SIEM, EDR, IDS/IPS, and other security platforms.
- Analyze logs and events from various sources (network, endpoint, cloud, etc.) to identify anomalies and potential threats.
- Ensure continuous tuning and optimization of detection rules and correlation logic to reduce false positives and improve threat detection.
- Security Tools & Infrastructure Management:

- Lead the deployment, configuration, and maintenance of security tools and platforms

across on-premises and cloud environments (e.g., Azure, AWS, GCP).

Management, Firewalls, and PKI.
- Ensure integration and interoperability of security tools with other IT systems and platforms.

**Threat Intelligence & Vuln erability Management**:

- Maintain up-to-date knowledge of the threat landscape, including TTPs (Tactics, Techniques, and Procedures) used by threat actors.
- Lead the vulnerability and patch management program, including scan scheduling, result analysis, remediation coordination, and reporting.
- Collaborate with IT and DevOps teams to prioritize and remediate vulnerabilities based on risk.

**Governance, Documentation & Reporting**:

- Develop and maintain SOC documentation, including SOPs, runbooks, and incident reports.
- Prepare and present metrics, dashboards, and executive reports on SOC performance, incident trends, and risk posture.
- Ensure compliance with internal security policies, regulatory requirements, and industry standards (e.g., ISO 27001, NIST, CIS).
- Team Leadership & Development:

- Mentor and coach junior analysts, fostering a culture of continuous learning and operational excellence.
- Assist in recruiting, onboarding, and training new SOC team members.
- Conduct regular performance reviews, knowledge-sharing sessions, and tabletop exercises.

**Security Awareness & Collaboration**:

- Act as a security ambassador by promoting cybersecurity awareness across the organization.
- Support and help drive security awareness campaigns and phishing simulations.
- Collaborate with cross-functional teams (DevOps, Sysops, Netops etc.) to ensure security is embedded in all business processes and technologies.

**Other Duties**:

- Assist team members as needed
- May be required to travel outside the State or country
- Available to work after hours and weekends as required
- May be required to transport equipment using personal vehicle between multiple facilities

within assigned service area, as directed by Manager
- Other duties assigned by the team Manager