Security Operations Center (SOC) Stream Lead @ A1 Competence Delivery Center

A1 Competence Delivery Center is a vital component of A1’s telecommunications business. Acting as an expertise hub, CDC is dedicated in delivering full range of high-quality IT, network, financial and other services to support A1’s operations across all OpCos, independent of location.

Using the power of A1 Group and leverage synergies, CDC enables transparency of resources, key skills and knowledge expansion and personal career growth opportunities’ enhancement, paired with job stability.

We are expanding the Security DC of the A1 Competence Delivery Center. Be part of this exciting journey!

This job can be performed by all countries within our A1 footprint.

Aleksandar Mirkovic is looking for a new member for his team.

Job purpose

The Security Operations Center (SОC) Stream lead is responsible for leading and managing the SOC team to ensure the effective detection, analysis, and response to cybersecurity threats. This role involves overseeing security monitoring, incident response, threat intelligence, and continuous improvement of SOC operations to enhance the organization's cybersecurity posture. The ideal candidate will have deep expertise in security operations, threat management, and incident response, combined with strong leadership and strategic planning skills.

Role insights:

Develop and execute the SOC strategy and development plan.
Lead, mentor, and develop SOC analysts, engineers, and incident response teams.
Define and maintain SOC key performance indicators (KPIs) and service-level agreements (SLAs).
Foster a culture of continuous improvement and innovation within the SOC.
Perform tasks in a timely and professional manner.
Oversee real-time security monitoring and incident detection to ensure rapid threat identification.
Lead the incident response process, including investigation, containment, eradication, and recovery.
Ensure proper escalation and communication of security incidents to senior management.
Coordinate with internal teams and external partners to enhance threat detection and response capabilities.
Collaborate with other Security delivery center teams to conduct threat hunting and forensic investigations.
Assess and mitigate security risks through continuous monitoring with process improvement goal.
Evaluate and implement advanced SOC technologies, including SIEM, SOAR…
Optimize SOC workflows, automation, and response playbooks for efficiency and effectiveness.
Work with Security architecture team to enhance security tool integrations.
Stay updated on emerging cybersecurity threats, tools, and best practices to continuously evolve SOC capabilities.

What makes you unique:

Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
5+ years of experience in cybersecurity, with at least 2 years in a SOC leadership role.
Strong knowledge of SIEM, SOAR, IDS/IPS, EDR, and threat intelligence platforms.
Expertise in security frameworks such as MITRE ATT&CK, NIST CSF, ISO 27001, and CIS controls.
Experience in managing security incidents, digital forensics, and threat hunting.
Industry certifications such as CISSP, CISM, GIAC, or equivalent preferred.
Fluent in English
Strong leadership, communication, and crisis management skills.