Security Operations Centre Manager

Triskele Labs are one of the leading providers of cybersecurity services in Australia. We assist clients to reduce their risk of a cyber compromise through the delivery of risk-considered controls.

Triskele Labs are one of the last remaining boutiques in Australia. We are currently the largest CREST Registered Penetration Testing company in Melbourne and one of the only boutiques to run a 24x7x365 Security Operations Team completely onshore.

The role ensures 24/7 threat detection, analysis, response, and reporting capabilities are maintained across all regions and aligned with the organisation’s security strategy and customer expectations.

The position plays a pivotal leadership role within the Managed Services (MDR) operation, ensuring operational excellence, quality assurance, customer satisfaction, compliance, continuous service improvement, and the evolution of SOC capabilities in line with emerging threats and technology.

This is a highly visible position within the business, accountable for effective case handling within agreed service levels. The role is operational hands on and to be successful in this role the SOC Manager must have a deep working knowledge of how MDR services function, including tools, platforms and workflows used within the SOC.

Requirements

• Lead and support SOC Team Leads and L3 analysts, promoting a collaborative and high-performance culture.
• Oversee talent management including onboarding, performance reviews, and career development.
• Foster an inclusive, accountable, and continuously improving team environment.
• Manage SOC daily operations such as triage, escalations, and shift coordination.
• Promote staff wellbeing, fairness in rostering, and mental health awareness.

• Ensure efficient SOC operations, meeting SLAs and incident response targets.
• Manage L1 scheduling and resource allocation for 24/7 coverage.
• Oversee analyst tier escalations and critical incident resolution.
• Maintain SOPs, runbooks, and knowledge practices.
• Act as the operational escalation point for Team Leads.
• Lead incident handoffs, standups, and high-severity escalations.
• Oversee service desk reports and enforce ISO-aligned procedures.
• Support incident simulations and post-incident reviews.

• Act as a senior escalation contact for MDR client issues.
• Ensure high-quality reporting and timely delivery of threat briefs and incident summaries.
• Collaborate with customer success teams to align on client priorities.
• Attend client meetings and support onboarding or escalations.
• Ensure quality incident documentation and guidance.

• Drive evolution of SOC tooling and automation (SIEM, SOAR, EDR).
• Evaluate and implement emerging technologies.
• Support client onboarding and readiness.
• Work with internal teams to improve triage and detection quality.
• Identify training needs and support service model improvements.

• Ensure SOC compliance with ISO and SOC2 frameworks.
• Oversee audits, risk management, and evidence procedures.
• Promote best practices in incident and change management.
• Support governance reporting and maintain policy compliance.
• Report to Head of Managed Services on SOC performance and risks.

• Contribute to Triskele Labs’ thought leadership and internal events.
• Represent the SOC at industry events.
• Lead by example to uphold SOC culture and technical standards.

• Bachelor’s in Cybersecurity/IT and 5+ years SOC experience, including 2+ in leadership.
• Strong knowledge of SIEM, SOAR, EDR, incident response, and security frameworks.

• Relevant certifications (e.g., GCIA, GCIH), Power BI experience, and audit exposure.
• Strong leadership, operational, communication, customer service, and problem-solving skills.
• Strategic mindset and technical depth in cyber tools and governance.

Benefits

Team culture is everything to Triskele Labs and it is the reason we exist. We are a forward-thinking company and always looking for ways to boost our team culture to ensure we are a destination employer. We continually undertake surveys to seek feedback from our team on ways we can improve our work environment and team member experience at Triskele Labs.

We provide our team a great range of additional benefits such as:

• Collaborate closely with C-Suite executives and gain insights from top industry leaders.
• Help influence and lead the SOC Team’s growth as we continue to expand throughout the Australian market.
• Enjoy a brand-new office located in the heart of Melbourne CBD.
• Frequent events organised by our People & Culture Team.

Working Arrangements:

The role is full time, Monday to Friday in our Collins St Melbourne Office.