Mistral5mo ago
Team Lead, SOC (Security Operations Center)
ParisFull-timeleadEngineeringOperationsSecurityManagementTeam Lead
3 views0 saves0 applied
Quick Summary
Key Responsibilities
Manage the SOC team, shape the roadmap, delegate effectively, and mentor engineers. • Drive operations: – Define vulnerability management processes and coordinate stakeholders for timely remediation.
Requirements Summary
– Contribute to security tooling, auto
Technical Tools
EngineeringOperationsSecurityManagementTeam Lead
About Mistral
At Mistral AI, we believe in the power of AI to simplify tasks, save time, and enhance learning and creativity. Our technology is designed to integrate seamlessly into daily working life.
We democratize AI through high-performance, optimized, open-source and cutting-edge models, products and solutions. Our comprehensive AI platform is designed to meet enterprise needs, whether on-premises or in cloud environments. Our offerings include le Chat, the AI assistant for life and work.
We are a dynamic, collaborative team passionate about AI and its potential to transform society.
Our diverse workforce thrives in competitive environments and is committed to driving innovation. Our teams are distributed between France, USA, UK, Germany and Singapore. We are creative, low-ego and team-spirited.
Join us to be part of a pioneering company shaping the future of AI. Together, we can make a meaningful impact. See more about our culture on https://mistral.ai/careers.
Role summary
We are looking for a SOC (Security Operations Center) Team Lead to build and lead our SOC function end-to-end. You will own vulnerability management, alerting and detection engineering, incident response, and the security tooling/infrastructure that enable these missions. You’ll define processes, collaborate closely with Product, Infra and IT, and continuously improve detection quality and response time.
Key missions & objectives: Establish a best-in-class SOC; reduce MTTA/MTTR; drive vulnerability remediation; raise detection coverage and precision; ensure robust incident handling and communication.
Reporting line: Reports to the Head of Security.
Location: Paris (on-site hybrid).
What you will do
• Lead & grow the team: Manage the SOC team, shape the roadmap, delegate effectively, and mentor engineers.
• Drive operations:
– Define vulnerability management processes and coordinate stakeholders for timely remediation.
– Design, implement, and operate SIEM/SOAR infrastructure (ingestion, normalization, correlation, alerting, playbooks).
– Specify logging requirements across our main stacks and centralize telemetry in the SIEM.
– Develop and tune correlation rules and detections; manage CTI intake and operationalize intel.
– Run continuous improvement to reduce false positives and raise signal quality.
– Establish crisp procedures for alert triage, escalation, and incident handling & investigation.
– Lead incident communications with stakeholders and ensure thorough documentation.
• Engineering & enablement:
– Contribute to security tooling, automation, and integrations that speed up detection/response.
– Produce guidance and documentation for product/infra teams; contribute to compliance in the SOC perimeter.
• Exercises & assurance: Coordinate red/blue exercises, post-mortems, and targeted audits to validate coverage and resilience.
Who you are
• 8+ years of experience leading SOC/CSIRT functions, with proven leadership.
• Hands-on with SIEM (e.g., Elastic Security, Sekoia, Splunk) and SOAR platforms.
• Strong experience in vulnerability management (e.g., DefectDojo, Dependency-Track) and remediation workflows.
• Solid grasp of the cyber kill chain / attack lifecycle, detection engineering, and log source coverage.
• Excellent problem-solving and communication skills; able to operate in a fast-paced startup environment.
• Builder mindset: pragmatic, automation-oriented, comfortable with ambiguity and ownership.
Now, it would be ideal if you… (Nice to have)
• Bring scripting/automation skills (e.g., Python, Bash) for data pipelines/playbooks.
• Know modern infra/app stacks (Linux, containers, Kubernetes, cloud), EDR/IDS/IPS.
• Have exposure to compliance frameworks (ISO 27001, SOC 2) and security audits/pen-tests.
• Have run purple team exercises and measurable detection-coverage programs.
• Are comfortable partnering with Product/Platform teams and influencing roadmaps.
Recruitment process
• Introduction call (30 min)
• Hiring Manager (30 min)
• Technical Rounds:
- Technical Screen (30 min)
- Technical Round (45 min)
• Value talk / Culture fit (30 min)
• References
By applying, you agree to our Applicant Privacy Policy.
Listing Details
- Posted
- October 27, 2025
- First seen
- March 25, 2026
- Last seen
- April 13, 2026
Posting Health
- Days active
- 18
- Repost count
- 0
- Trust Level
- 41%
- Scored at
- April 13, 2026
Signal breakdown
freshnesssource trustcontent trustemployer trustcandidate experience
External application · ~5 min on Mistral's site
Please let Mistral know you found this job on Jobera.
4 other jobs at Mistral
View all →Explore open roles at Mistral.
Similar Team Lead, SOC (Security Operations Center) jobs
CloudflareRemoteTeam Lead - Security Platform
Remote
GitLabRemoteEngineering Manager, Software Supply Chain Security: Pipeline Security
USD 131600-282000
Remote
ZscalerStaff Information Security Engineer - Thick Client Application , VAPT
BrexSenior Security Operations Engineer
$192k–$240k/yr
BrexSenior Security Operations Engineer
BrexSenior Security Operations Engineer
$192k–$240k/yr
Newsletter
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
A
B
C
D
No spam. Unsubscribe at any time.
Team Lead, SOC (Security Operations Center)