Kyndryl
SOCCWnDevLead
“SOC CW n Dev Lead at Kyndryl. Skills: AI/ML model deployment, Generative AI integration, automation playbooks, Microsoft Sentinel, Azure Logic Apps, SOAR development, scripting (PowerShell, Python, C#). Design and implement AI/ML models for threat detection, behavioural analytics, and anomaly detection. Integrate Generative AI into SOC workflows”
What You'll Achieve.
Mean Time to Respond (MTTR) reduction; Ticket volume reduction; Manual intervention percentage; RCA turnaround time; SLA compliance improvement; proactive threat visibility; decision-making
Industry & Context.
analytical and problem-solving capabilities; problem-solving
What They're Looking For.
Must Have
8+ years of experience in SOC Operations, Automation, or Security Engineering, at least 3 years in a lead role, Microsoft Sentinel (SOAR, Logic Apps, KQL, custom connectors), Azure Logic Apps and automation frameworks, AI/ML model deployment for SOC analytics and anomaly detection, PowerShell, Python, or C# scripting for custom automation, GenAI integration using Azure OpenAI, Microsoft Copilot, or similar platforms, Kyndryl Bridge or equivalent hybrid orchestration tools, Deep understanding of SOC processes, threat lifecycle, and ITSM/SIEM/SOAR integration, Proven experience in developing and managing automation KPIs linked to SLA and operational efficiency, Exposure to Power BI, data modelling, and executive reporting frameworks, analytical and problem-solving capabilities with a focus on innovation and scalability
Nice to Have
Microsoft Certified: Security Operations Analyst Associate (SC-200), Microsoft Certified: Azure AI Engineer Associate (AI-102), Microsoft Certified: DevOps Engineer Expert (AZ-400), ITIL v4 Foundation, Certified SOC Analyst (CSA) or GIAC Certified Automation Professional (GCAP)
What You'll Do.
Design and implement AI/ML models for threat detection
behavioural analytics
and anomaly detection
Integrate Generative AI into SOC workflows
Lead the development of agentic AI systems
Embed GenAI-powered conversational analytics and predictive insights into executive dashboards
and maintain automation playbooks
Define and enforce development standards for SOC automation
Ensure seamless integration with third-party security tools
and cloud-native services
Oversee the design of Power BI dashboards
Define and monitor automation-linked KPIs
Embed AI/GenAI-driven analytics layers into dashboards
Participate in SOC governance forums
Establish Responsible AI practices
Maintain audit trails
and documentation for all AI and automation deployments
Lead Continual Service Improvement (CSI) initiatives
How You'll Work.
Team & Collaboration
Collaborate with SOAR developers, content engineers, and threat detection teams; Work closely with SOC Analysts, Threat Intelligence, Platform Engineering, and Cloud Security teams; Partner with OEMs and product vendors
Process & Methodology
Lead role
Applying for this SOC CW n Dev Lead role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Kyndryl?
Real rants from real employees. Read before you apply.