- Company Name
- E.Leclerc Varennes sur Seine
- Job Title
- RESPONSABLE SOC - H/F
- Job Description
-
**Job title**
SOC Manager
**Role Summary**
Lead the operational and strategic cybersecurity function for a multi‑channel retailer and its internal IT assets. Manage incident detection, investigation, and response while steering the SOC team, enhancing security tools, and advising business units on secure technology choices.
**Expectations**
- Full responsibility for SOC N3 incident handling and analysis.
- Directly support and lead major incident management and crisis cells.
- Own the continuous improvement of SOC processes, documentation, and reporting.
- Empower and grow the SOC staff, ensuring skill development, scheduling, and performance reviews.
**Key Responsibilities**
- Analyze cybersecurity events in the SOC (N3).
- Process alerts from internet sites via SIEM (~Splunk).
- Investigate production‑side or automated tool alerts.
- Capacitance building: document cases, share knowledge, and update procedures.
- Participate in major incident handling and crisis cell activities.
- Produce statistics, dashboards, and summaries to enhance security posture.
- Design and evaluate architecture for new cybersecurity tools (WAF, EDR, Bastion, VPN, secure SI, etc.).
- Conduct lab testing and qualification of new tools or configurations; document findings and alternatives.
- Contribute to Bug Bounty programs, vulnerability tracking, and coordination with internal teams.
- Adapt security frameworks (ANSSI, EU standards) to the organization’s context.
- Advise on secure technology selections for all teams (development, systems, network, support).
- Maintain constant threat and vulnerability monitoring, including ANSSI recommendations and cyber ecosystem trends.
- Manage SOC scheduling, project follow‑up, and resource allocation.
- Lead team meetings, performance reviews, and recruitment efforts.
**Required Skills**
- Proficient in SOC operations and incident response (N3 level).
- Strong analytical and investigative capabilities in cybersecurity incidents.
- Experience with SIEM platforms, notably Splunk.
- Knowledge of modern security tools: WAF, EDR, Bastion, VPN, secure SI.
- Ability to design, evaluate, and implement security architectures.
- Demonstrated experience with Bug Bounty or vulnerability management programs.
- Leadership and team management: scheduling, mentoring, hiring, and performance appraisal.
- Excellent communication for cross‑functional security advisement.
- Continuous learning mindset for emerging threats, vulnerabilities, and industry standards.
**Required Education & Certifications**
- Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or related field.
- Relevant security certifications preferred: CISSP, CISM, GCIH, CRISC, or equivalent.
- Hands‑on certifications in SIEM (Splunk), network security, and incident response are advantageous.