SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides relentless security against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.
We are seeking an experienced Tier 3 Threat Analyst- SOC, Manager to help build, lead, and mature an EMEA-based SOC team for a global MDR provider with 24x7 operations. This role combines hands-on technical expertise, leadership, and strategy to drive the success of our Managed Detection & Response (MDR) and SOC-as-a-Service offerings.
Key ResponsibilitiesSOC Leadership & Operations
Design, recruit, and develop a high-performing EMEA SOC team.
Partner with the global SOC Operations Leader to train, mentor, and manage analysts.
Define, track, and report on KPIs to ensure consistent SOC performance.
Enforce SOC operational standards, processes, and escalation practices.
Threat Detection & Response
Lead triage, investigation, and escalation of validated security incidents.
Notify clients of incidents and guide mitigation efforts.
Conduct proactive threat hunting to detect and contain emerging threats.
Fine-tune XDR/SIEM rules to reduce false positives and detect missed threats.
Perform forensic analysis and vulnerability assessments when needed.
Intelligence & Research
Collect and analyze global threat intelligence to strengthen defenses.
Proactively monitor security sources for potential client impacts.
Share threat reports, advisories, and corrective action guidance.
Actively participate in security forums to stay ahead of evolving attack patterns.
Technical Expertise
Interpret and analyze logs from diverse sources (firewalls, IDS, Windows DC, access systems, EPP/EDR, email security, etc.).
Maintain hands-on expertise across IDS/IPS, firewalls, VPNs, SIEM, XDR, and EDR tools.
Apply knowledge of ITIL processes including Incident, Problem, and Change Management.
8+ years as a Tier 3 SOC Analyst (MDR experience strongly preferred).
Proven track record leading or managing SOC teams in global environments.
Deep knowledge of TCP/IP traffic analysis, log analysis, and incident response workflows.
Hands-on experience with IDS/IPS, Firewalls, VPNs, SIEM, EDR, and XDR solutions.
Familiarity with major firewall platforms (SonicWall, Checkpoint, Cisco, Fortinet, Palo Alto).
Experience with threat hunting, vulnerability assessments, and cloud security.
Strong communication skills for internal collaboration and client-facing updates.
Security certifications such as CISM, CND Analyst, or equivalent.
Forensic analysis experience is a plus.
Cloud security architecture expertise is a plus.
#LI-KB7
#LI-Ireland
#LI-Remote
SonicWall is an equal opportunity employer.
We are committed to creating a diverse environment and are an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 100+ countries.
Applicant Privacy Notice
Top Skills
What We Do
SonicWall has been fighting the cyber-criminal industry for over 25 years defending small, medium-size businesses and enterprises worldwide. Backed by research from the Global Response Intelligent Defense (GRID) Threat Network, our award-winning real-time breach detection and prevention solutions, coupled with the formidable resources of over 10,000 loyal channel partners around the globe, are the backbone securing more than a million business and mobile networks and their emails, applications and data. This combination of products and partners has enabled a real-time cyber defense solution tuned to the specific needs of the more than 500,000 global businesses in more than 215 countries and territories.
