- Senior
- Optionales Büro in Bangalore
Description
- Oversee the SOC team responsible for 24/7 monitoring, alert triage, and incident response.
- Work with the Manager of the SOC to maintain and improve SOC workflows, escalation paths, and operational playbooks.
- Ensure Manger of the SOC has direction and support to enable SOC analysts to be trained and equipped to handle evolving threats and technologies.
- Own the enterprise-wide incident response strategy, including planning, execution, and post-incident analysis.
- Coordinate cross-functional response efforts during major security incidents.
- Conduct root cause analysis and implement corrective actions to prevent recurrence.
- Build and maintain a threat intelligence program that aggregates internal and external data sources.
- Lead proactive threat hunting initiatives using frameworks like MITRE ATT&CK.
- Integrate threat intelligence into detection and response workflows.
- Oversee the vulnerability management lifecycle, including scanning, prioritization, remediation, and reporting.
- Collaborate with infrastructure and application teams to ensure timely patching and configuration hardening.
- Manage the deployment and tuning of security monitoring tools (e.g., SIEM, EDR, NDR).
- Develop and maintain detection rules, dashboards, and alerts for comprehensive visibility.
- Lead the strategy and operations for endpoint protection across all enterprise devices (workstations, servers, mobile).
- Ensure deployment and effectiveness of endpoint detection and response (EDR) solutions.
- Monitor endpoint health, enforce security configurations, and respond to endpoint-related threats.
- Collaborate with IT and desktop support teams to ensure secure provisioning and lifecycle management.
- Drive the implementation of SOAR platforms to automate repetitive tasks and streamline incident response.
- Identify opportunities for automation across alert triage, enrichment, and remediation workflows.
- Develop, maintain, and enforce security policies, standards, and procedures aligned with regulatory and business requirements.
- Ensure policies are regularly reviewed, updated, and communicated across the organization.
- Collaborate with Legal, Compliance, and HR to align policies with enterprise risk and governance frameworks.
- Monitor policy adherence and lead corrective actions for non-compliance.
- Define and track operational metrics such as MTTD, MTTR, and incident volume.
- Provide regular reports and dashboards to executive leadership and stakeholders.
- Conduct maturity assessments and lead initiatives to enhance operational efficiency and resilience.
- Recruit, mentor, and retain top talent in security operations.
- Develop career paths, training plans, and certification goals for team members.
- Foster a collaborative and high-performance culture focused on innovation and accountability.
- Partner with IT, DevOps, Legal, Compliance, and Risk teams to align security operations with business needs.
- Serve as a key point of contact for internal and external audits, assessments, and investigations.
- Communicate complex security issues in business terms to non-technical stakeholders.
- Competitive compensation (salary, equity and bonuses) and comprehensive benefits designed to foster work-life balance, care for your health, protect your finances and help you save and invest for the future.
- Generous paid time away from work, including flexible time off, holidays and sick time, health and wellness initiatives, and a charitable match program to help you give back to your community.
- Great perks, which vary by location and can be site-specific: employee discounts, transportation reimbursements, subsidized cafes and fitness facilities.
- A flexible, hybrid work environment combining the best of in-office collaboration and community-building along with the benefits of working from home.