SOC Run Operations Lead

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.
Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.
Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.
We are seeking a SOC Run Operations Lead to take full ownership of managing the entire SOC Run team, including all SOC Run shift leads. In this leadership role, you will be accountable for overseeing the day-to-day operations of cybersecurity monitoring, detection, and response activities to protect the CMA CGM Group. You will lead a highly skilled and motivated team, ensuring consistent execution across shifts while leveraging advanced security technologies to defend against emerging threats.
This position plays a critical role in orchestrating the SOC’s operational efforts and ensuring seamless coordination across all shifts and personnel under your command.

**Responsibilities**:
**Leadership and Management**:
Lead and manage the SOC RUN team, ensuring effective performance and development.
Provide guidance and support to SOC Analysts and other team members.
Foster a collaborative and proactive work environment.
**Operational Oversight**:
Oversee the 24x7 Security Operation Center (SOC) environment.
Ensure the continuous monitoring and analysis of security alerts from various advanced security platforms.
Coordinate and lead incident response efforts, ensuring timely and effective resolution of security incidents.
**Process Improvement**:
Develop, maintain, and continuously improve SOC playbooks, standard operating procedures (SOPs), processes, and guidelines.
Collaborate with the SOC Leads to enhance the overall SOC posture and service quality.
Collaborate with Cybersecurity teams to enhance the detection maturity level of the SOC.
Participate in incident response simulations and threat hunting sessions.
**Communication and Reporting**:
Act as the primary point of contact for security incidents, liaising with internal stakeholders and external parties.
Provide regular updates and reports to the Head of CDC on SOC activities and performance.
Communicate findings and escalate concerns as necessary.
**Training and Development**:
Ensure the SOC team is well-trained and equipped with the necessary skills and knowledge.
Promote continuous learning and development within the team.
**Profile**:
**Education**:
Bachelor's degree in Computer Science, Computer Engineering, IT Security, or a related field; alternatively, equivalent demonstrated knowledge.
**Experience**:
At least 10 years of relevant experience in IT Security or SOC operations, with a minimum of 3 years in a managerial role.
Experience with Security Operations Center, network event analysis, and threat analysis.
**Technical Skills**:
Knowledge of various security methodologies and technical security solutions.
**Strong understanding of security operations concepts**: perimeter defense, endpoint management, data leak prevention, kill chain analysis, and security metrics.
Familiarity with the Cyber Kill Chain Model and MITRE ATT&CK Matrix.
**Qualities**:
Highly motivated and willing to learn.
Autonomous and proactive behavior.
Strong analytical and synthesis capacity.
Ability to work and interact effectively with management, business customers, and technical teams.
Discretion regarding sensitive matters.
Come along on CMA CGM’s adventure