Job
Description
Job Title: SOC Engineer / IT Security Specialist Exp : 2 to 4 years Job location : Mumbai - Fort (On site) Department: Information Security / SOC Reports to: CISO / Security Lead Role Summary: Responsible for managing and enhancing the organization's security posture through continuous monitoring, compliance tracking, risk assessment, policy enforcement, and incident response. Ensures alignment with internal policies, regulatory standards, and industry best practices. Key Responsibilities :Technology & Compliance: Regularly review security tools and systems for compliance and hardening. Maintain and update internal security policies and ensure adherence. Track compliance with regulatory standards (SEBI, RBI, CERT-IN, ISO 27001, etc.). Prepare compliance and audit reports for senior management. SOC Operations & Governance: Oversee 24/7 SOC operations, threat monitoring, and incident handling. Track and report actionable audit/compliance items to closure. Provide weekly/monthly security dashboards and risk summaries to CISO. Risk & Incident Management: Conduct regular risk assessments and implement mitigation strategies. Develop and maintain incident response plans and ensure timely resolution of security breaches. Lead efforts in cyber resiliency and recovery from security incidents. Security Architecture & Monitoring: Design secure network/system architectures and monitor them continuously. Manage SIEM, EDR/XDR, NAC, and other security tools for threat detection. Oversee access control, patch management, and vulnerability remediation. Cloud & Data Security: Implement and manage security measures across cloud platforms (AWS, Azure, GCP). Ensure data protection via encryption, DLP, DAM, and secure storage practices. Governance, Risk & Compliance (GRC): Maintain alignment with GDPR, HIPAA, PCI DSS, ISO 27001, and other standards. Collaborate across teams to ensure integrated GRC efforts and audit preparedness. Training & Awareness: Conduct employee security training and awareness programs. Promote a culture of cybersecurity across the organization. Preferred Skills & Qualifications:Technical Skills: Experience with tools like EDR/XDR, FIM, DAM, DLP, WAF, IPS/IDS, and firewalls. Knowledge of OS security (Windows, Linux, macOS), network security, and secure coding practices. Proficiency in encryption, vulnerability scanning, and SIEM tools. Certifications (Preferred): CISSP, CISM, CEH, CISA, CompTIA Security+, ISO 27001, ISO 22301. Soft Skills: Strong analytical thinking and problem-solving abilities. Excellent documentation and reporting skills. Collaborative mindset with the ability to train and influence others. Resilient under pressure and eager to stay current with cybersecurity trends. Job Types: Full-time, Permanent Pay: Up to ₹1,000,000.00 per year Benefits: Flexible schedule Health insurance Paid sick time Paid time off Provident Fund Schedule: Day shift Monday to Friday Application Question(s): How many relevant years of exp do you have ? What is your current location ? Work Location: In person
