Description :

- Company Profile.

- Flentas helps enterprises leverage the full potential of the Cloud through consulting and implementation services.

- As an organization, Flentas brings strong technology expertise and hands-on experience to drive large-scale digital transformation initiatives and scale cloud operations.

- We serve clients globally, supported by a passionate team of experienced Solution Architects and Technology Enthusiasts.

- Job Title : Team LeadSecOps L2.

Job Summary :

- We are seeking an experienced Team Lead SecOps L2 to lead and mentor a team of security analysts while actively contributing to advanced incident investigation and response.

- This role combines hands-on technical expertise with people and operational leadership to ensure effective 24x7 security operations, adherence to SLAs, and continuous improvement of SOC processes.

Key Responsibilities :

- Lead, guide, and mentor SecOps L1 and L2 analysts in daily security operations.

- Oversee day-to-day SOC activities, ensuring compliance with defined processes, SLAs, and quality standards.

- Manage shift schedules and resource allocation to ensure uninterrupted 24/7 SOC coverage.

- Act as the escalation point for complex and high-severity security incidents.

- Oversee detection, triage, investigation, containment, and response to cybersecurity incidents.

- Collaborate with Threat Intelligence, IT, Cloud, and Engineering teams to remediate security threats.

- Conduct root cause analysis (RCA) and post-incident reviews; recommend corrective and preventive actions.

- Facilitate team meetings, knowledge-sharing sessions, and performance reviews.

- Ensure accurate documentation of incidents, playbooks, and procedures in Jira/Confluence.

- Drive continuous improvement in SOC processes, tooling, and response effectiveness.

Required Skills & Competencies :

- Strong understanding of cybersecurity frameworks such as MITRE ATT&CK, NIST, and industry best practices.

- Hands-on experience with CrowdStrike, Splunk, WIZ, VirusTotal, Jira, Confluence, and cloud platforms (AWS/Azure/GCP).

- Proven expertise in incident detection, investigation, escalation, and response at L2 level.

Experience Handling a Wide Range Of Alerts Including :

- IDS/IPS alerts.

- EDR detections.

- Malware analysis and forensic investigations.

- Phishing attacks.

- Cloud security incidents.

- Dynamic and static analysis.

- Strong leadership, communication, and decision-making abilities.

- Ability to operate effectively under pressure during active security incidents.

- Excellent analytical, problem-solving, and multitasking skills.

Experience :

- 5-7 years of experience working in a SOC or Security Operations environment.

- 1-2 years of experience in a team lead, senior analyst, or supervisory role.

Working Conditions :

- Rotational shift-based role to support 24/7 Security Operations.

Nice To Have :

Industry certifications such as :

- CompTIA Security+.

- Google Cybersecurity Professional Certificate.