Job Description

Position : SOC - Manager Role : Manager Educational Requirements : Minimum - BSC (IT) and any Post Graduate degree Maximum - B.E. (IT, CE, ETC) Professional Certification : Certifications in CEH / CHFI / GSEC / GMON / ITIL or any equivalent Security Certification Desirable Certifications : CISA / CISSP / OSCP / GPYC / GREM Experience : Total Experience: 8 - 12 Years Relevant Experience : Minimum 8 years in cyber security and below mentioned Technologies. SIEM / SOAR Implementation Experience will be added advantage. Skills Soft Skills : Leadership Skills, Change Agent, Communication skills, Presentation Skills, Problem Solving skills. Technical Skills : SIEM (QRadar / Splunk / MS Sentinel) SOAR (Palo Alto), EDR/XDR, Threat Intelligence, Threat Hunting. Responsibilities : 1. Leading and managing the Security Operations consiting of Security Analyst, Sr. Security Analyst, Leads and Technology consultant 2. Responsible for SOC Strategy, Governance and enhancing SOC maturity level. 3. Revising and developing processes to strengthen and improve the current Security Operations Framework. 4. Ensuring compliance to policies and procedures and process improvisation to achieve operational objectives. 5. To ensure daily management and administration of SOC operations to achieve operational effectiveness. 6. Responsible for overall use of resources and initiation of corrective action where required for Security Operations Centre. 7. Well versed with industry frameworks of NIST, ISO SOC2 and good understanding of Mitre Attack Framework TTPs. 8. Ensuring incident monitoring, identification, reporting and communication is carried out within the agreed SLAs. 9. Ensuring achievement of targeted Productivity with set quality standards and achieving KPI s. 10. Deep Dive into Critical Incidents and respond back to customers in a timely manner and support customers as required. 11. Responsible for guiding teams on reports, dashboards, metrics for SOC operations and presentation to Senior Management of Customers. 12. Extending support off business hours or during critical situation that requires to extend support beyond regular work timings. 13. Attend client calls and drive weekly monthly steering committee discussions. 14. Support the Pre Sales/Sales functions during the Scope Discussions with clients. 15. Should be a dynamic cyber security professional with a passion to support complex environment to attain targeted CSAT. 16. Ensure 100% customer satisfaction. 17. Should be able to handle customer escalations, concerns and providing timely resolutions. 18. Good command on customer handling. 19. To Integrate respective solution / technology with every other solution / technology deployed in the SOC setup. 20. To Automate L1 L2 activities. 21. To perform threat modelling of the client assets and accordingly define the necessary use cases. 22. To plan execute Major changes without any disruption and adverse impact. 23. To continuously deliver the value of solution to the client terms of detecting all kind threats, accuracy of detection, value added use cases and content development etc. 24. To improvise threat hunting capabilities. 25. Ensure continuous fine tuning of configuration, rules, policies etc. Continuous innovation and automations in intuitive dashboards, report, queries. 26. Participate in client DR, cyber, tabletop drills etc. 27. Responsible for ensuring end to end tight integration of the client IT Assets, other SOC solutions, Applications etc. 28. Provide management report on respective solutions effectiveness Provide necessary support during the Forensics investigation and threat hunting. 29. Perform continuous assessment of respective solution maturity against global standards. 30. Responsible to do the additional activities based on the SOC services provided by Inspira