SOC Operations Leader
About the role
We Are Accenture Security helps organizations prepare, protect, detect, respond, and recover across the full security lifecycle. Cybersecurity challenges differ across industries and client environments, so we bring global expertise, advanced technologies, and proven delivery models to create integrated solutions tailored to each client’s needs. Whether we’re defending against known attacks, detecting and responding to emerging threats, or operating a full security operations capability, we help clients build cyber resilience so they can grow with confidence.
You Are You’re a security leader who is energized by outsmarting adversaries and strengthening defenses. You combine deep cyber operations expertise with strong client relationship management, and you can translate technical realities into executive-level insights and decisions. You thrive in a fast-paced, team-oriented environment, bring structure to ambiguity, and lead with a service mindset. You’re comfortable guiding both technical and non-technical stakeholders—especially when stakes are high—while building teams, improving operations, and driving outcomes.
The Work As a Security Operations Delivery Excellence Lead in Security Operations, you will lead day-to-day SOC delivery for external clients—during service transition and in steady-state (“run”) operations—ensuring consistent, high-quality detection and response outcomes. You will oversee threat monitoring and cyber defense services to protect corporate environments from advanced and targeted attacks. You’ll work closely with SOC analysts, incident responders, engineers, and client stakeholders to strengthen resiliency through detection engineering, threat hunting, intelligence infusion, and continuous improvement.
Key Responsibilities- Serve as the Service Delivery Leader and SME for SOC operations, ensuring operational excellence and contractual alignment.
-
Provide leadership and technical guidance across SIEM platforms, with strong hands-on knowledge of Splunk and Microsoft Sentinel/XDR, including:
-
Architecture and operational optimization
-
Log source onboarding and integration
-
Correlation rule/use-case development and tuning
-
Troubleshooting and performance improvements
-
Lead and coordinate incident response management, including high-severity incidents, ensuring effective cross-team collaboration between client and Accenture stakeholders.
-
Own operational governance including daily operations, escalation management, staffing/resource planning, and service quality.
-
Manage and report on contractual performance (KPI/SLA), including weekly/monthly reporting and executive-ready service review materials.
-
Build and sustain strong client relationships, acting as a trusted advisor and the senior escalation point.
-
Provide executive updates to client leadership on:
-
Risk posture and incident trends
-
Service performance and operational health
-
Improvement roadmap, automation progress, and key decisions required
-
Champion continuous service improvement, including process maturity, detection improvements, and automation opportunities.
-
Support business development, including RFP/RFI responses, solution shaping, and transition planning.
-
Lead people priorities: coaching, performance management, recruiting support, training, retention, and building a culture of learning and accountability. What You’ll Need Basic Qualifications:- Minimum of 10 years of experience in information/cyber security with a focus on security operations, SIEM-based monitoring, threat detection, and incident response.
-
At least 5 years in a senior leadership/management role leading security operations teams, including onshore/offshore delivery models.
-
Demonstrated expertise with enterprise SIEM tools, specifically Splunk and Microsoft Sentinel/XDR (design, onboarding, correlation/use-case development, tuning, and troubleshooting).
-
Strong experience in threat hunting and detection engineering using frameworks such as MITRE ATT&CK.
-
Proven incident response leadership, including handling complex, high-impact incidents and driving effective remediation.
-
Significant experience managing client stakeholders as a primary contact—handling escalations, setting expectations, and maintaining trust.
-
Strong governance and reporting experience, including KPI/SLA management, contractual reporting, and executive-level service reviews.
-
Excellent communication skills with the ability to deliver clear, concise executive updates and translate technical details into business impact.
-
Experience contributing to RFP/RFI responses, solution shaping, transitions, and operationalizing new services.
-
Strong documentation habits and operational discipline, including runbooks, playbooks, and structured root cause analysis.
-
Availability to work Eastern Standard Time (EST) business hours.
-
Bachelor’s or Master’s degree in Computer Science, Information Security, or Engineering.
-
English is required for this position as this role will regularly interact with stakeholders across Canada, US and other countries across our Global footprint where English is the common language. Due to the significant high volume of interactions with these English-speaking stakeholders, which is inherent to this position, it is not possible to reorganize the company's activities to avoid this requirement. Bonus Points Preferred Qualifications:- Security certifications such as CISSP, CISM, or equivalent.
-
Prior experience in a professional services/consulting environment, managing complex client engagements at scale.
-
Experience driving automation/orchestration and advanced analytics within SOC operations to improve efficiency and detection quality.
-
Experience facilitating or leading tabletop exercises, crisis communications, and executive stakeholder briefings. Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location,
role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation, based on full-time
employment, for roles that may be hired as set forth below.
The recruiting efforts for this position are intended to fill a brand new position.
The base pay range shown below is intended as a guideline to reflect the majority of offers for this role.
It does not represent a maximum limit — in some cases, actual compensation may exceed the range where appropriate.
Information on benefits is here.
Role Location Annual Salary Range
British Columbia/Ontario $99,450 to $209,900
About Accenture
Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale.
We are a talent and innovation-led company serving clients in more than 120 countries. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
This LinkedIn company page is moderated. When engaging with Accenture, we encourage everyone to:
- Use common courtesy and be respectful of others.
- Create your own original content and avoid content that you know to be fraudulent.
- Never repost someone else's copyrighted work, unless you have permission.
- Never post personal, identifying, or confidential information.
We reserve the right to delete comments or posts we deem to be:
- Profane, obscene, inappropriate, offensive, abusive material.
- Spam, repeated comments and commercial messages and personal advertisements.
- Discriminatory or that contain hateful speech of any kind regarding age, gender, race, religion, nationality, sexual orientation, gender identity or disability.
- Threats; personal attacks; abusive, defamatory, derogatory, or inflammatory language; or stalking or harassment of any individual, entity or organization.
- False, inaccurate, libelous, or otherwise misleading in any way.
Similar jobs you might like
SOC Operations Leader
About the role
We Are Accenture Security helps organizations prepare, protect, detect, respond, and recover across the full security lifecycle. Cybersecurity challenges differ across industries and client environments, so we bring global expertise, advanced technologies, and proven delivery models to create integrated solutions tailored to each client’s needs. Whether we’re defending against known attacks, detecting and responding to emerging threats, or operating a full security operations capability, we help clients build cyber resilience so they can grow with confidence.
You Are You’re a security leader who is energized by outsmarting adversaries and strengthening defenses. You combine deep cyber operations expertise with strong client relationship management, and you can translate technical realities into executive-level insights and decisions. You thrive in a fast-paced, team-oriented environment, bring structure to ambiguity, and lead with a service mindset. You’re comfortable guiding both technical and non-technical stakeholders—especially when stakes are high—while building teams, improving operations, and driving outcomes.
The Work As a Security Operations Delivery Excellence Lead in Security Operations, you will lead day-to-day SOC delivery for external clients—during service transition and in steady-state (“run”) operations—ensuring consistent, high-quality detection and response outcomes. You will oversee threat monitoring and cyber defense services to protect corporate environments from advanced and targeted attacks. You’ll work closely with SOC analysts, incident responders, engineers, and client stakeholders to strengthen resiliency through detection engineering, threat hunting, intelligence infusion, and continuous improvement.
Key Responsibilities- Serve as the Service Delivery Leader and SME for SOC operations, ensuring operational excellence and contractual alignment.
-
Provide leadership and technical guidance across SIEM platforms, with strong hands-on knowledge of Splunk and Microsoft Sentinel/XDR, including:
-
Architecture and operational optimization
-
Log source onboarding and integration
-
Correlation rule/use-case development and tuning
-
Troubleshooting and performance improvements
-
Lead and coordinate incident response management, including high-severity incidents, ensuring effective cross-team collaboration between client and Accenture stakeholders.
-
Own operational governance including daily operations, escalation management, staffing/resource planning, and service quality.
-
Manage and report on contractual performance (KPI/SLA), including weekly/monthly reporting and executive-ready service review materials.
-
Build and sustain strong client relationships, acting as a trusted advisor and the senior escalation point.
-
Provide executive updates to client leadership on:
-
Risk posture and incident trends
-
Service performance and operational health
-
Improvement roadmap, automation progress, and key decisions required
-
Champion continuous service improvement, including process maturity, detection improvements, and automation opportunities.
-
Support business development, including RFP/RFI responses, solution shaping, and transition planning.
-
Lead people priorities: coaching, performance management, recruiting support, training, retention, and building a culture of learning and accountability. What You’ll Need Basic Qualifications:- Minimum of 10 years of experience in information/cyber security with a focus on security operations, SIEM-based monitoring, threat detection, and incident response.
-
At least 5 years in a senior leadership/management role leading security operations teams, including onshore/offshore delivery models.
-
Demonstrated expertise with enterprise SIEM tools, specifically Splunk and Microsoft Sentinel/XDR (design, onboarding, correlation/use-case development, tuning, and troubleshooting).
-
Strong experience in threat hunting and detection engineering using frameworks such as MITRE ATT&CK.
-
Proven incident response leadership, including handling complex, high-impact incidents and driving effective remediation.
-
Significant experience managing client stakeholders as a primary contact—handling escalations, setting expectations, and maintaining trust.
-
Strong governance and reporting experience, including KPI/SLA management, contractual reporting, and executive-level service reviews.
-
Excellent communication skills with the ability to deliver clear, concise executive updates and translate technical details into business impact.
-
Experience contributing to RFP/RFI responses, solution shaping, transitions, and operationalizing new services.
-
Strong documentation habits and operational discipline, including runbooks, playbooks, and structured root cause analysis.
-
Availability to work Eastern Standard Time (EST) business hours.
-
Bachelor’s or Master’s degree in Computer Science, Information Security, or Engineering.
-
English is required for this position as this role will regularly interact with stakeholders across Canada, US and other countries across our Global footprint where English is the common language. Due to the significant high volume of interactions with these English-speaking stakeholders, which is inherent to this position, it is not possible to reorganize the company's activities to avoid this requirement. Bonus Points Preferred Qualifications:- Security certifications such as CISSP, CISM, or equivalent.
-
Prior experience in a professional services/consulting environment, managing complex client engagements at scale.
-
Experience driving automation/orchestration and advanced analytics within SOC operations to improve efficiency and detection quality.
-
Experience facilitating or leading tabletop exercises, crisis communications, and executive stakeholder briefings. Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location,
role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation, based on full-time
employment, for roles that may be hired as set forth below.
The recruiting efforts for this position are intended to fill a brand new position.
The base pay range shown below is intended as a guideline to reflect the majority of offers for this role.
It does not represent a maximum limit — in some cases, actual compensation may exceed the range where appropriate.
Information on benefits is here.
Role Location Annual Salary Range
British Columbia/Ontario $99,450 to $209,900
About Accenture
Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale.
We are a talent and innovation-led company serving clients in more than 120 countries. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
This LinkedIn company page is moderated. When engaging with Accenture, we encourage everyone to:
- Use common courtesy and be respectful of others.
- Create your own original content and avoid content that you know to be fraudulent.
- Never repost someone else's copyrighted work, unless you have permission.
- Never post personal, identifying, or confidential information.
We reserve the right to delete comments or posts we deem to be:
- Profane, obscene, inappropriate, offensive, abusive material.
- Spam, repeated comments and commercial messages and personal advertisements.
- Discriminatory or that contain hateful speech of any kind regarding age, gender, race, religion, nationality, sexual orientation, gender identity or disability.
- Threats; personal attacks; abusive, defamatory, derogatory, or inflammatory language; or stalking or harassment of any individual, entity or organization.
- False, inaccurate, libelous, or otherwise misleading in any way.