Security Operation, Senior Manager; KSA National

Our client is shaping the future of cybersecurity through innovation, intelligence, and a relentless drive to protect. Our platforms integrate cutting-edge AI, real-time threat detection, and deep security insights to help organizations proactively defend against evolving cyber threats.

Our client is an innovative cybersecurity organization is looking for a Senior Manager, Security Operations to lead and scale its SOC operations. This role will oversee the day-to-day execution of detection, investigation, and incident response workflows while building and mentoring high-performing analyst teams.

You will act as the critical bridge between frontline SOC operations and platform engineering-bringing both the technical depth of security operations and the strategic leadership needed to drive operational excellence
.

• Lead, mentor, and grow a team of SOC analysts and incident responders across multiple tiers.
• Own end-to-end SOC operations including alert triage, investigations, escalations, and incident response workflows.
• Develop SOC processes, runbooks, and playbooks to improve consistency and reduce MTTD and MTTR.
• Define and track operational KPIs such as alert volume, false positives, escalation accuracy, analyst throughput, and SLA performance.
• Manage shift scheduling, capacity planning, and workload distribution to ensure 24/7 SOC coverage.
• Collaborate with Detection Engineering and Security Research teams to improve detection quality and close coverage gaps.
• Lead post-incident reviews and root cause analyses, translating findings into improvements in processes and detection capabilities.
• Work closely with Customer Success teams to ensure SOC operations meet client expectations and SLA commitments.
• Evaluate and optimize SOC tools, automation workflows, and SOAR integrations to improve analyst efficiency.
• Develop career frameworks, skill matrices, and training programs to strengthen SOC expertise within the team.
• Provide regular reporting on operational performance, risk posture, and SOC health to senior leadership.

• Saudi nationals are required for this role
  , with strong English communication skills.
• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (Master's degree is a plus).
• 7+ years of experience in Security Operations, Incident Response, or SOC environments
  , with 3+ years in a leadership role
  .
• Proven experience building and managing multi-tier SOC teams (L1/L2/L3).
• Strong hands‑on knowledge of SIEM, EDR/XDR, SOAR platforms, and threat intelligence feeds
  .
• Solid understanding of MITRE ATT&CK, cyber kill chain methodologies, and modern attack techniques
  .
• Experience managing SLAs, SLOs, and operational KPIs in customer‑facing environments.
• Ability to design operational processes, escalation frameworks, and quality assurance practices.
• Strong communication skills with the ability to translate technical incidents and metrics to business stakeholders.
• Certifications such as CISSP, CISM, GSOM, or GCIH are advantageous.
• Experience with in SaaS, MSSP, or MDR environments is highly preferred.