SOC Technical Lead

SOC Technical Engineer - Barcelona

Since 2011, SQUAD Group has been a key player in the cybersecurity landscape. We partner with leading organizations to protect their information systems through a comprehensive 360° offering of consulting, integration, expertise, and managed services.

Our mission : Securing Together!

We believe in a collaborative approach to cybersecurity, where experts and clients work hand-in-hand to anticipate threats and protect critical infrastructure.

As part of our growing team, we're seeking a SOC Technical Engineer . Based in Barcelona, this role will put you at the core of a top-tier Incident Response team, defending the digital assets of a company that connects hundreds of millions of people every month.

Your Role

You are the cornerstone of our Security Operations Center engagement, providing technical leadership, architectural direction, and operational oversight. You’ll ensure the design, optimization, and integration of the SOC’s security stack, including SIEM, EDR, DLP, and NIDS technologies.

You’ll coordinate daily operations, guide analysts across all tiers, and serve as the primary bridge between your SOC team and internal leadership. Your role ensures operational excellence, effective incident management, and continuous enhancement of detection and response capabilities.

Your Responsibilities

Lead environment assessments, including Elastic SIEM audits and detection rule gap analysis.

Define escalation workflows, playbooks, and operational documentation.

Oversee SOAR automation and orchestration, driving efficiency across response processes.

Coordinate and mentor SOC members (L1–L3), ensuring high-quality investigations and continuous improvement.

Act as the senior escalation point for complex security incidents and client communications.

Align SOC strategy with the client’s objectives, maintaining performance metrics and operational KPIs.

What You Bring

10+ years of SOC or cybersecurity experience with leadership responsibilities.

Deep expertise across SIEM, EDR, and SOAR technologies (preferably Elastic & CrowdStrike).

Strong background in threat detection, automation, and incident response architecture.

Excellent communication and stakeholder management skills.

Preferred Certifications :

BTL2, GIAC GCIH, Elastic Certified Engineer, CrowdStrike Certified Falcon Administrator

Why Join Squad?

Personalized Growth : We help you build a training and certification plan aligned with your professional goals through our SquadeXpérience .

Expertise Development : Participate in internal events like our MixYourTalent webinars and monthly CTF sessions.

Visibility : Attend major industry conferences and contribute to our #TheExpert technical blog.

Culture : Enjoy a dynamic and close-knit environment with after-work events and team gatherings that foster great camaraderie.