🛠 Tech Stack

💼 About This Role

You'll own SOC operations end-to-end at Atlan, defining detection and response outcomes. You'll build AI agents to autonomously handle alert triage and investigation. This role leads the function, not a team, and contributes beyond SOC to compliance and automation.

🎯 What You'll Do

• Own SOC operations for detection, triage, and response.
• Manage the managed SOC vendor and drive SLA conversations.
• Build and deploy AI agents for alert triage and investigation.
• Lead incident response and run post-mortems.
• Drive automation via scripts, n8n workflows, and AI tooling.

📋 Requirements

• 6+ years in security operations with SOC leadership experience.
• Hands-on experience with SIEM platforms like Splunk.
• Incident response fundamentals and cloud-native environments (AWS/GCP/Azure).
• Building AI-assisted security workflows (LLMs, agent frameworks).

✨ Nice to Have

• Experience building an in-house SOC from scratch.
• Familiarity with automation tooling (n8n, Tines, XSOAR).
• Relevant certifications (GCIA, GCIH, GCFA).

🎁 Benefits & Perks

• 💰 Competitive Compensation with strong base salary, performance pay, and equity.
• 🤖 AI Native Culture with AI woven into daily work.
• 🏥 Health & Wellness benefits (details not provided).

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Technical Interview· 60 min
3. 3Leadership Interview· 45 min