Managed SOC Manager

As an experienced candidate with 8 to 12 years of experience in the cybersecurity domain, you will be playing a crucial role in the Pune or Hyderabad location. Your responsibilities will involve leading and managing day-to-day Security Operations Center (SOC) operations, providing threat and vulnerability analysis, and offering security advisory services. **Key Responsibilities:** - Monitor SIEM solutions and various security devices in a SOC environment, such as SIEM, Behavioral Analytics tools, IDS/IPS, and security analytics platforms. - Lead and manage day-to-day SOC operations, providing threat and vulnerability analysis, and security advisory services. - Utilize core security and infrastructure technologies during investigations, including firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS, etc. - Develop and follow Standard Operating Procedures (SOPs) and Playbooks for handling alerts. - Integrate various log sources, on-premise/on-cloud assets, and create custom use cases/test cases in the SIEM solution. - Report urgent matters to the Incident Response Team promptly. - Maintain ticket queues within SLAs and update tickets accordingly. - Share information with internal departments and client operations teams. - Create and maintain documentation for security event processing. - Prepare reports, dashboards, and documentation for client and in-house management. - Coordinate with stakeholders, colleagues, client teams, and maintain positive working relationships. - Facilitate cross-functional communication within teams and manage vendors/OEMs. - Plan SOC infrastructure capacity and resource planning. - Be available to work flexible hours, rotating shifts, weekends, off-hours, and holidays. **Qualifications Required:** - Excellent verbal and written communication skills with leadership abilities. - Strong analytical and problem-solving skills. - Eagerness for knowledge, innovation, and automation. - Hands-on experience in Security Incident Management and Response tactics. - Proficiency in various SIEM solutions, security appliances, and cyber-attack knowledge. Your background should include managerial skills like proposal writing, technical pre-sales, and team management, as well as technical skills in Splunk, EDR Platform, Securonix SIEM, Palo Alto, CrowdStrike, Microsoft EDR, Qrader, SOC Infrastructure, Threat Intelligence, and Incident Response. This position requires someone with a deep understanding of cybersecurity and a proactive approach towards security operations.,