Lead SOC Analyst

Join to apply for the Lead SOC Analyst role at Capgemini. U.S. citizenship required with no dual citizenship; must live near or be willing to relocate to Austin, TX. About the Role As a SOC Supervisor, you’ll be entrusted to deliver managed security services to some of the most recognized brands in the world, protecting them from threats that actually matter to their business 24x7x365. The role involves assisting the SOC Manager in leading a team of cybersecurity analysts, providing guidance related to investigations, ensuring operations run smoothly, and interfacing directly with our clients. Experience Bachelor’s Degree or higher preferred. 5+ years in a 24x7 security operations environment; previous supervisory/management experience preferred. Hold or work towards attaining GCIH, CySA+, GIAC certifications (not required but an objective set by SOC Leadership). Demonstrated experience with event detection, triage, analysis, and incident response: investigative process, remediation techniques, host isolation, file retrieval, full host scans, root‑cause analysis, end‑user management, firewall blocks, log analysis, host‑based analysis, network traffic analysis, email analysis, OSINT, cyber kill chain, MITRE. Experience with SIEM platforms such as Devo, Elastic, Splunk, QRadar, Sentinel. Experience with endpoint protection platforms such as MS Defender, CrowdStrike, Tanium, Cybereason. Experience with ticketing systems such as ServiceNow, Archer, Jira. Experience with SOAR platforms such as XSOAR, Swimlane, Siemplify. Knowledgeable regarding computing concepts such as networking and scripting. Experience with current cyber threats and associated TTPs used to infiltrate computer networks. Experience in computer intrusion analysis and incident response. Computer network surveillance/monitoring. Knowledge and understanding of network protocols, devices, multiple operating systems, and secure architectures. Responsibilities Support investigations from any/ all monitoring platforms as they occur. Function as an escalation point for investigations from all levels of SOC analysts requiring assistance/further investigation. Work with analysts to investigate and triage security incidents that they may be unfamiliar with. Assist L1/L2/L3 analysts with investigations under increased examination by the customer. Contribute to quality assurance of analyst write‑ups and investigations; provide teach‑backs, spot‑checks, and guidance to improve investigations for future escalations. Serve as an SME for one or more technology areas supported by the SOC. Maintain up‑to‑date procedural documentation for supported platforms. Perform training on supported platforms as needed. Interface with internal and customer teams to support technology for monitoring purposes; may be involved in project objectives. Adapt to a broad array of analytical tools and methodologies with exceptional proficiency, provide comprehensive guidance and mentorship to analysts. Participate in internal analyst meetings and status reporting as required by SOC leadership. About Capgemini Capgemini is a global business and technology transformation partner, helping organizations to accelerate their digital and sustainable transformation. With a heritage of over 55 years and a workforce of 340,000, Capgemini delivers end‑to‑end services and solutions across strategy, design, engineering, and AI, cloud, and data. 3>EEO Statement Capgemini is an Equal Opportunity Employer encouraging inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law. Job Details Schedule: Full‑timeLocation: Austin, TX (relocation required)Nationality: U.S. Citizenship RequiredCitizenship: No dual citizenship allowed #J-18808-Ljbffr