SOC L3 CIS Department

Job Description

Appealing Points:

• Key leadership role at the core of SOC operations As a SOC L3 leader, you will oversee advanced security operations using SIEM, SOAR, and EDR platforms, driving global monitoring and incident response excellence.
• Balanced position combining deep technical expertise and people management Leverage hands-on cybersecurity knowledge while leading teams, defining KPIs, and improving processes to elevate overall SOC maturity.
• Opportunity to drive SOC transformation against evolving threats Utilize frameworks such as MITRE ATT&CK, NIST CSF, and ISO 27001 to enhance detection, automation, and threat response through continuous improvement and innovation.

Annually Salary: 8 million yen and above

Qualifications:

• SOC L3  7–12+ years of experience in cybersecurity operations, with at least 3+ years in a leadership or managerial role with hand-on experience in SIEM/SOAR, EDR and IT platforms 
• Good to have certifications like CISSP, CISA, CEH, ISO27001(Implementation)  

Leadership & Team Management 

• Lead, mentor, and develop a team of SOC analysts, threat hunters, and incident responders across multiple shifts or geographies. 
• Define clear team objectives, KPIs, and performance metrics to ensure consistent, high-quality security monitoring and incident response. 
• Create and maintain staffing schedules, on-call rotations, and escalation paths. 
• Foster a culture of continuous learning, collaboration, and accountability within the SOC team. 

Operations & Monitoring 

• Oversee daily SOC operations including threat monitoring, alert triage, incident investigation, and response coordination. 
• Ensure that security incidents are detected, analyzed, prioritized, contained, and remediated efficiently. 
• Maintain operational awareness of active incidents, emerging threats, and vulnerabilities. 
• Ensure alignment of SOC processes with organizational policies, SLAs, and compliance requirements. 

Technology & Process Optimization 

• Manage and optimize SOC tools and technologies, including SIEM, SOAR, EDR/XDR, NDR, and threat intelligence platforms. 
• Drive integration and automation initiatives to improve detection efficiency and reduce analyst fatigue. 
• Collaborate with security engineering teams to fine-tune correlation rules, detection logic, and data ingestion pipelines. 
• Develop and maintain incident response playbooks, escalation procedures, and reporting templates. 

Technical Skills 

• Strong understanding of network security, endpoint protection, cloud security, and threat detection technologies. 
• Expertise in SIEM platforms (e.g., Splunk, Azure Sentinel, CrowdStrike, ELK, LogRhythm) and SOAR tools (e.g., Cortex XSOAR, Splunk Phantom). 
• Familiarity with EDR/XDR tools (CrowdStrike, Defender, Sentinel One) and threat intelligence integration. 
• Knowledge of adversary tactics and frameworks such as MITRE ATT&CK, Cyber Kill Chain, and Diamond Model. 
• Understanding of cloud and hybrid environments (AWS, Azure, GCP) from a detection and response perspective. 

Preferred Certifications 

• Certified SOC Analyst (CSA) 
• GIAC Certified Incident Handler (GCIH) 
• Certified Information Systems Security Professional (CISSP) 
• Certified Information Security Manager (CISM) 
• GIAC Security Operations Manager (GSOM) or GIAC Cyber Threat Intelligence (GCTI) 
• CompTIA CySA+ / CASP+

Japanese Language: Japanese business level required and business level english required

Benefits:

• Annual salary increase
• Bonus once a year
• Complete social insurance
• Full payment of transportation expenses
• Kanto IT Software Health Association
• E-learning available
• Orientation for new employees
• Available for training programs (domestic and overseas)

Company Description:

This company is one of the largest IT consulting companies in Europe, with more than 200,000 employees based in locations in over 40 countries.

As a global leader in consulting, technology services and digital transformation, they were established in 2013 as a Japanese corporation of the world's leading IT consulting company at the forefront of innovation, and they offer a wide range of integrated services with the highest level of technology and abundant expertise.

[Passive smoking measures]

Indoor smoking

Designated smoking area