SOC Manager-Paytm Money

We are seeking a seasoned and visionary SOC Manager to lead and evolve our 24x7 Security

Operations Center. This role demands a strategic thinker with deep technical expertise,

operational excellence, and leadership capabilities to drive threat detection, incident response,

adversarial exposure validation and continuous improvement across our cybersecurity

landscape.

1. Lead and manage the 24x7 SOC operations team, including SOC analysts, incident

responders, and threat hunters.

2. Develop and maintain SOC procedures, playbooks, and workflows that include cloud-

native threats and attack vectors.

3. Oversee incident detection, triage, analysis, escalation, and response processes.

4. Drive use-case development and fine-tuning of SIEM, SOAR, and UEBA platforms.

5. Manage and optimize security tools such as SIEM, SOAR, EDR/XDR, cloud security

posture management (CSPM), threat intelligence platforms (TIP), and Qualys

6. Champion automation and orchestration to reduce MMTD/MTTR and improve analyst

efficiency.

7. Collaborate with other IT and security teams on vulnerability management, threat

intelligence, risk assessments and to ensure seamless integration of security tools.

8. Ensure resolution of incidents and outages, coordinating with internal teams and

external vendors to restore service within agreed-upon SLAs.

9. Maintain operational metrics (MMTD/ MTTR), dashboards, KPI/KRI and regular reports

on SOC performance, threat landscape and risk posture.

10. Continuously evaluate and improve SOC tools, technologies, and workflows.

11. Ensure compliance with relevant standards (e.g., ISO 27001, CIS, NIST, DPDPA) and

participate in audits.

12. Interface with stakeholders across the organization on security incidents, threat posture,

and business continuity.

13. Act as the primary point of contact for internal stakeholders, auditors, and external

partners during security incidents.

14. Understanding in augmenting AI and ML into SOC to drive automation and efficacy.

15. Lead tabletop exercises, cyber-drills, red/blue team simulations, and post-incident

reviews

Qualifications and Experience:

1. 12-15 years of experience in cybersecurity, with at least 6-8 years in a SOC leadership

role.

2. Strong knowledge of SOC operations, SIEM platforms (e.g., Splunk, QRadar, Elastic),

EDR tools, IDS/IPS, firewalls, and SOAR.

3. Hands-on experience with incident handling, threat hunting, threat intelligence

methodologies and malware analysis.

4. Strong understanding of MITRE ATT&CK, NIST, ISO 27001, and other security

frameworks

5. Familiarity with regulatory compliance requirements and global standards (e.g., SEBI,

RBI, NIST, ISO, CIS).

6. Excellent communication, interpersonal, analytical and problem-solving skills.

7. Bachelor's degree in Computer Science, Information Technology, Cybersecurity.

8. Relevant certifications like: CISM / CEH / GCIA / GCIH are preferred.

9. Knowledge of vulnerability management and the public cloud of AWS along with

emerging cloud security technologies (CSPM / CWPP) will be an add-on advantage.