SME SECURITY OPS CENTER (SOC)

Function

D&IT

Pay Band

E5

Role

IT SOC Lead

A purpose driven role for you

Responsible for IT SOC Operations, Designing & Adapting right fit Industry best Security practices, enhancing detection, and response capability for the emerging threat landscape.

A Day in the life

A day in life will be around: Responsible for IT SOC Operations; Designing & Adapting the right-fit Industry-best Security practices; enhancing detection and response capabilities for the emerging threat landscape.

• Lead and manage all aspects of SOC operations, ensuring effective security monitoring and incident response.
• Establish and enforce governance over IT/OT security monitoring activities across the organization.
• Facilitate seamless collaboration and communication between SOC analysts/service providers and operation engineers.
• Contribute to the development and execution of the organization's cybersecurity SOC strategy.
• Direct and orchestrate the company's response to significant security threats, thereby safeguarding the organization from cyber incidents.
• Validate new project deliveries to identify potential cyber threats and enhance detection capabilities.
• Proactively monitor the organization's networks for security breaches and conduct thorough investigations into any reported violations.
• Accurately identify and categorize false and true positive security incidents/events.
• Demonstrate a comprehensive understanding of various security solutions and technologies, including SIEMs, Patch Management, Network Visibility, EDR, CASB, Packet Tracers, Network Traffic Analysers, and DLPs.
• Oversee daily DLP operations, including incident analysis and forensic assessments.
• Provide essential investigative support from a DLP perspective.
• Drive the enhancement of DLP tool capabilities and expand its coverage throughout the organization.
• Recommend pertinent IT security enhancements to IT Management.
• Provide support for IT security audits and assist in the development and implementation of remediation plans as required.
• Enable automated responses to recurring incidents/events through SOAR adoption.
• Identify and implement optimal SIEM use cases, Brand Monitoring use cases, and Threat Hunting use cases.
• Ensure timely tracking and closure of all SIEM, Threat Hunting, and Brand Monitoring tickets.
• Oversee both horizontal and vertical deployment strategies for the SOC.
• Identify current security threats and anticipate future attack vectors.
• Collaborate with project teams and third-party vendors to ensure that all new hardware or software installations adhere to enhanced SOC security standards.
• Identify, document, and maintain the IT & OT security risk register, reporting findings directly to the CISO.
• Orchestrate the company's response to major security threats.
• Oversee the review and update of SOC Standard Operating Procedures (SOPs).
• Lead collaborative efforts with teams and analysts to ensure timely acknowledgment of all alerts, incidents, and events.
• Represent the organization's security posture during internal and external audits.
• Adopt best practices for monitoring and correlation-based actions.
• Govern weekly, monthly, quarterly, and annual report submissions.
• Drive security awareness & conducts regular training on security policy and standard requirements through training, communication, and workshops.
• Responsible for arranging trainings for analysts
• Coordinate with Partner team for managed SOC-SIEM day to day operations
• Coordinate with managed partner for implementation of security control
•  

Academic Qualification & Experience

B. Tech /B.E.- CS/IT/EC

2-5 Years in SOC & DLP

Technical Skills/Knowledge

• SOC
• DLP
• EDR
• G Suite
• ITIL

Behavioural Skills

• Communication
• Team work
• Interpersonal
• Problem Solving
• Presentation

What will it be like to work for Hero

About Hero