Skip to content

SOC Team Lead

DeepwatchTampa, FL, USJuly 8, 2026
Hybrid
Full-time
SOC
Management

Come join Deepwatch’s team of world-class cybersecurity professionals and the brightest minds in the industry. If you're ready to challenge yourself with work that matters, then this is the place for you. We're redefining cybersecurity as one of the fastest growing companies in the U.S. – and we have a blast doing it!

Who We Are

Deepwatch is the leader in managed security services, protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch’s cloud-based security operations platform, Deepwatch provides the industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. 

Our core values drive everything we do at Deepwatch, including our approach to tackling tough cyber challenges. We seek out tenacious individuals who are passionate about solving complex problems and protecting our customers. At Deepwatch, every decision, process, and hire is made with a focus on improving our cybersecurity solutions and delivering an exceptional experience for our customers. By embracing our values, we create a culture of excellence that is dedicated to empowering our team members to explore their potential, expand their skill sets, and achieve their career aspirations, which is supported by our unique annual professional development benefit.

Deepwatch recognition includes:

  • 2025, 2024, 2023, 2022 and 2021 Great Place to Work® Certified
  • 2024 Military Times Best for Vets Employers
  • 2024 US Department of Labor Hire Vets Gold Award
  • 2024 Forbes' America's Best Startup Employers
  • 2024 Cyber Defense Magazine, Global Infosec Awards 
  • 2023 and 2022 Fortress Cybersecurity Award
  • 2023 $180M Series C investment from Springcoast Capital Partners, Splunk Ventures, and Vista Credit Partners of Vista Equity Partners
  • 2022 Cybersecurity Excellence Award for MDR

SOC Team Lead 

Reports to: SOC Manager

Location: Hybrid 3x week, Tampa, FL

Shift: 6AM-2PM EST

Reporting directly to the SOC Manager, the SOC Team Lead at Deepwatch will make a significant impact on global security. Our mission involves safeguarding organizations against the world’s most advanced threats, and the Deepwatch Security Operations Center is your gateway to a diverse range of experiences. As a SOC Team Lead, you’ll actively detect and respond to incidents in real-time to protect our valued customers. You will also take a proactive role in guiding analysts in cybersecurity related education, helping them achieve their goals. Additionally, you will tackle the hardest investigations a customer will have, ensuring that they get timely and comprehensive reports.

Deepwatch has a unique approach to how we support our customers and ultimately provide an experience not found anywhere else. You’ll be an integral part of supporting our customers by understanding their bespoke environment, needs and challenges. You will be playing a key role in supporting some of the top organizations in the world, and have the opportunity to develop your skills by working with the best responders in the industry, your team and your shift!

In this role you’ll get to:

  • Showcase your strong security knowledge by assisting in investigation mentoring, demonstrating efficient ways to pivot within SIEMs, and teaching industry best practices. 
  • Act as the shift triage captain, identifying the appropriate actions to take throughout critical investigations, customer compromises, and network targeting. 
  • Participate in projects aimed at improving SOC operations, enhancing customer retention, refining SOPs and customer service
  • Collaborate closely with leadership, customer service teams, and product owners to gain insight into new offerings and services.
  • Disseminate relevant information to your team through training sessions and regular touchpoints.
  • Leverage our world-class business intelligence team to extract actionable insights from big-data analysis.
  • Act as an additional resource for the Threat Response team when a compromise is discovered or when a customer declares an Incident.
  • Engage in peer review sessions to evolve and enhance the analysis quality for ticket escalations. 

To be successful in this role, you’ll need to:

  • Demonstrate 5+ years prior SOC experience as a technical escalation point or senior analyst, with the ability to support the team with escalations on an as-needed basis.
  • Identify opportunities for improvement, continuously measuring accuracy and quality of analysis performed.
  • Have a track record of working outside your team and across business units solve problems when the situation requires it.
  • Extensive expertise with SIEMs such as Splunk (required), Google SecOps, and/or Microsoft Sentinel including the ability to navigate the console with ease, perform queries that result in efficient investigations and accurate alert analysis.
  • Have in-depth understanding of modern EDR, email security, and cloud identity platforms.
  • A high-level understanding of Adversary Tactics, Techniques, & Procedures (TTP), full packet capture analysis, malware analysis, host forensics (Windows).
  • Advanced knowledge of Event Logging, Triage, and Analysis.
  • The ability to autonomously perform a complete and thorough triage and incident investigation with the proficiency to pivot to other log sources, cloud systems, or consoles as necessary and to act as the final point of technical escalation for customers and analysts.
  • Measure and tell a compelling story with data, not just throughput and performance.
  • Demonstrate experience working customer SLAs and contract requirements ensuring your team is delivering with quality and efficiency at all times.
  • Identify problems inside and outside of your team and demonstrate the Deepwatch “One Team” core value by being a strong voice in identifying and ensuring problems are resolved.
  • Train and mentor other analysts using qualitative measurement tools and techniques as well as act as a coach and support career pathing for your team in partnership with the People Team.
  • GCIH, GCIA, GDAT, GMON, GREM, OCSP, CISSP certifications preferred, not required. 

Statutory Pay Disclosure

The anticipated salary range for this role is $118,00 - $125,000 + bonus + stock options + benefits. Actual compensation may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.

ITAR Compliance

This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following:

  • A citizen of the U.S.;
  • A lawful permanent resident of the United States; 
  • A person admitted to the United States as a refugee; or
  • A person that has been granted asylum by the United States government.

The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment.

What We Offer:

Deepwatch is excited to provide benefits designed to support team members and their families. Including:

  • Medical, dental, vision, and disability insurance
  • Flexible Time Off (FTO), 12 company holidays, sick leave and 8-Weeks Paid Parental Leave
  • Unique professional development benefits with Annual “development dollars” to support our people growth and development
  • Wellness contests and monthly educational programs
  • 401(K) retirement program
  • Learn more here: Deepwatch Benefits

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply — we’d love to hear from you.  Please review our DEI Statement here.

Deepwatch welcomes and encourages applications from people with disabilities and accommodations are available on request for candidates taking part in all aspects of the selection process. Please inform your recruiter or contact [email protected] for further information.

All Deepwatch employees are expected to:

  • Be interested in and able to work remotely from a home office when not at a corporate office
  • Pass a pre-employment background check in accordance with applicable laws

Deepwatch is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, marital status, sexual orientation, gender identity, genetic information, protected veteran status, or any other characteristic protected by law.  In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

By submitting your application, you agree that Deepwatch may collect your personal data for recruiting, global organization planning, and related purposes. The Deepwatch Privacy Policy explains what personal information we may process, where we may process your personal information, our purposes for processing your personal information, and the rights you can exercise over Deepwatch’s use of your personal information.

Job Details

Salary

$118,000 – $125,000/yr (us)

Experience

Management

Tools & Tech

C
Chronicle
Microsoft Sentinel
Splunk
Windows

Preferred Certs

CISSP
GCIA
GCIH