Short company description

BIT SENTINEL is one of the largest cybersecurity providers in Central and Eastern Europe, trusted by organizations across all major industries. Our Security Operations Center (BSS-CERT) delivers comprehensive Managed Security Services, from advanced threat detection and response to robust compliance solutions.

Our strength is forged in offense. Founded by elite ethical hackers, BIT SENTINEL’s DNA is rooted in deep expertise in penetration testing, application code review, and incident response. We think like attackers to build a stronger defense.

This offensive mindset powers our BSS-CERT, where our team of certified specialists leverages their expertise to provide proactive, intelligent security. We operate from our Bucharest headquarters with a flexible service model tailored to client needs, including 24/7 monitoring capabilities and on-call SLA-backed support to ensure our clients are protected around the clock.

Overview

The SOC Team Lead is a hands-on technical leadership role responsible for guiding our team of Security Analysts. You will act as the senior technical resource for incident response, a mentor for junior analysts, and the guardian of our operational quality. This role is perfect for an experienced SOC analyst who is ready to take the next step in their career, leading from the front to investigate complex threats and develop the skills of the team.

Key Responsibilities

• Technical Leadership & Mentorship: Lead, mentor, and coach a team of SOC Analysts, fostering a culture of continuous learning, collaboration, and excellence.
• Incident Management: Serve as the primary technical escalation point for complex or high-severity security incidents. Guide the investigation and response efforts to ensure timely and effective remediation.
• Quality Assurance: Perform regular quality assurance checks on analysts’ work, including alert triage, investigation notes, and incident reports, to ensure accuracy, thoroughness, and adherence to established procedures.
• Feedback & Development: Provide constructive, real-time feedback to analysts on their technical work and help them develop their skills in areas like forensics, malware analysis, and threat hunting.
• Process & Playbook Refinement: Contribute to the development, documentation, and refinement of SOC processes, standard operating procedures (SOPs), and incident response playbooks.
• Advanced Threat Analysis: Lead and participate in proactive threat hunting activities and assist in the analysis of emerging threats, vulnerabilities, and security trends.
• Collaboration: Work closely with the SOC Service Delivery Manager, RED team, and L1 – L3 team members to provide the technical context and details needed for client reports, incident response reports and advisory calls.

Required Qualifications & Skills

• 5+ years of hands-on experience in a Security Operations Center (SOC) environment, with demonstrated experience in incident response.
• Proven experience in a senior or lead analyst role, with a passion for mentoring others.
• Deep technical expertise with core security technologies, including SIEM (e.g., Elastic SIEM, Splunk, Sentinel, QRadar), EDR, and network security tools.
• Strong understanding of incident response methodologies, cyber kill chain, and frameworks like the MITRE ATT&CK® framework.
• Excellent analytical, critical thinking, and problem-solving skills, with the ability to perform calmly under pressure.
• Strong communication skills, capable of clearly explaining complex technical issues to team members.

Competitive Advantage

• Professional cybersecurity certifications such as GIAC (GCIH, GCFA), CISSP, OSCP etc.
• Experience with scripting or automation (e.g., Python, PowerShell) to improve SOC efficiency.
• Experience working in a Managed Security Service Provider (MSSP) environment.
• Experience with security orchestration, automation, and response (SOAR) platforms.
• Knowledge of cybersecurity standards related to incident response, such as NIST SP800-61r1, SP800-61r2, SANS PICERL, etc.
• Experience in operationalizing and developing SOC-specific processes (procedures, work instructions, etc.).
• Previous experience with raw log file review, data correlation, and analysis, as well as with network security tools, network traffic analyzers, firewall logs, network flows, intrusion detection systems, system logs, memory dumps, vulnerability management, SOAR platforms, SIEM, especially Elastic SIEM, and other Enterprise / Open Source equivalents.
• Previous experience in  malware investigations, incident response, and threat hunting

Benefits package

• Flexible Hybrid Work: Balance your professional and personal life with a flexible schedule that combines the best of remote work and in-office collaboration.
• Comprehensive Health & Wellness: Your well-being is our priority. We provide private medical insurance for you and a family member, supplemented with daily meal tickets.
• Dedicated Growth Budget: We invest in your expertise. You’ll receive a generous annual budget for professional development, including industry-leading certifications and specialized training tailored to your career goals.
• Impactful Career Trajectory: This isn’t just a job; it’s a career path. As a key member of a growing, dynamic organization, you’ll work on a diverse portfolio of clients and have a clear runway for future advancement.
• Competitive Compensation & Rewards: We believe in recognizing great work. You’ll receive an attractive salary, a transparent performance-based bonus scheme, and regular incentives like gift vouchers.
• A Supportive & Collaborative Culture: Join a close-knit team of professionals in a friendly environment where your voice is heard. We build our community through fun, seasonal team-building activities that foster strong working relationships.

Other projects that we are proud of

• CyberEDU, a spin-off of Bit Sentinel – a next-gen cyber range as a service which is being used to host UNbreakable Romania, the National Cyber Security Olympics and the Romanian Cyber Security Challenge, while providing hands-on training and labs for Universities & Companies
• We deliver incident response, trainings and exercises and preparedness services for European Union Agency for Cybersecurity under Cybersecurity Support Action 
• Phish Enterprise, a spin-off of Bit Sentinel – empower employees with cybersecurity training and phishing simulations to defend against cyber threats
• Participating in CYRESRANGE: Cyber Ranges Resiliency Networks
• Participating in ECYBRIDGE: strengthening synergies in defence and civilian cybersecurity
• Participated in RESISTO project: an innovative solution for Communication Critical Infrastructures holistic situation awareness and enhanced resilience
• Technical coordinator for the National Phase & Selection of National Teams of European Cyber Security Challenge, one of the most important cybersecurity competitions from Europe

How to contact us

We are really excited that you consider applying for your future career in cybersecurity at Bit Sentinel. Please fill out the form and we will get back to you asap. 🙂

Final Notes

To ensure a fair and authentic recruitment process, we ask all candidates to participate in interviews without using AI tools or external assistance. Our goal is to evaluate your personal skills, experience, and communication style – we want to get to know you, not an AI. For this reason, please avoid using virtual backgrounds and note that in-person interviews may form part of our selection process.

Use of AI-generated content or third-party support during interviews may result in disqualification. All successful candidates will undergo comprehensive background checks, including identity, education, and criminal record verification.

We appreciate all applicants for their interest. Only those who best match the role requirements will be contacted for further steps.

By submitting your application, you consent to the use of your personal data for recruitment purposes. If hired, your data will be used to manage your employment record. If not selected, we may retain your information for up to three years to consider you for future opportunities.