Security Operations Center (SOC) Manager

Role Summary:We are seeking an experienced L3 SOC Analyst / SOC Manager to lead advanced cyber security monitoring, incident response, threat detection, and SOC operations.The candidate will act as the highest escalation point for security incidents, manage complex investigations, improve SOC processes, and coordinate with internal teams, customers, OEMs, and leadership during critical security events.The role requires strong expertise in SIEM, threat intelligence, incident response, EDR, XDR, cloud security, endpoint security, and security governance.Key Responsibilities(A) Security Monitoring & Incident ResponseLead investigation and response for critical security incidents and cyber threats.Perform advanced threat hunting and forensic analysis.Analyze logs, network traffic, malware behavior, and endpoint telemetry.Handle escalated incidents from L1/L2 SOC teams.Coordinate containment, eradication, and recovery activities.Conduct root cause analysis (RCA) for security incidents.(B) SOC Operations ManagementManage day-to-day SOC operations and ensure SLA adherence.Develop and improve SOC processes, SOPs, runbooks, and playbooks.Monitor SOC KPIs, MTTR, incident trends, and reporting metrics.Develop custom detection rules and use cases.Create MITRE ATT&CK mapped detection strategies.Perform proactive threat hunting activities.Monitor cloud security events across AWS, Azure, GCP, and Kubernetes/OpenShift environments.Support compliance requirements such as ISO 27001, PCI-DSS, SOC2, HIPAA, DPDP and CERT-In guidelines.Mentor and guide L1/L2 SOC analysts.Required SkillsStrong knowledge of SIEM platforms, incident response, threat hunting, malware analysis, network security, endpoint security, and cloud security.Manage and tune EDR/XDR Solutions, SOAR platforms, IDS/IPS, WAF, DLP, Email Security SolutionsUnderstanding of TCP/IP, DNS, HTTP/HTTPS, VPN, Firewalls, Active Directory, Linux & Windows security.Experience with scripting languages such as Python, PowerShell, and Bash.Strong analytical, troubleshooting, leadership, and communication skills.Preferred CertificationsCEH, CHFI, CISSP, CISM, CompTIA Security+, Splunk Certified, Certified SOC Analyst (CSA), CCSPEducational QualificationBachelor’s degree in computer science, Cyber Security, IT, or related field.Master’s degree preferred.Good to HaveExperience in MSSP/SOC environments.Exposure to SOAR automation.Knowledge of ransomware handling.Experience with Red Team / Blue Team exercises.Cloud-native security operations experience.Leadership & Stakeholder ManagementMentor and guide L1/L2 SOC analysts. Conduct knowledge transfer and training sessions. Coordinate with engineering, infrastructure, cloud, and application teams. Present incident reports and risk assessments to leadership/customers.Manage customer escalations during critical incidents

Apply Now