Cyber Security Manager - Incident Management

We are seeking an experienced SOC (Security Operations Center) Manager with over 10 years of experience in cybersecurity and expertise in managing security operations using Azure Sentinel and SentinelOne. The ideal candidate will lead a team of security analysts, oversee incident response, and ensure the organization's security infrastructure is robust, efficient, and scalable. Key Responsibilities : Leadership and Team Management : - Lead, mentor, and manage a team of SOC analysts and engineers. - Define performance objectives, conduct regular performance reviews, and promote skill development within the team. - Coordinate shift schedules to ensure 24/7 SOC coverage. SOC Operations : - Oversee day-to-day SOC operations, including threat monitoring, analysis, and response. - Develop and enforce SOC policies, processes, and playbooks. - Ensure compliance with industry standards, such as ISO 27001, NIST, and GDPR. Incident Response and Threat Management : - Lead and coordinate incident response efforts for security breaches, ensuring timely containment and resolution. - Investigate and manage advanced persistent threats (APTs) and zero-day vulnerabilities. - Perform root cause analysis and implement measures to prevent recurrence. Technology Management : - Utilize and optimize Azure Sentinel for log management, threat detection, and automation of security workflows. - Manage SentinelOne for endpoint detection, response, and threat remediation. - Oversee the integration and performance of other security tools and platforms. Security Strategy and Improvement : - Continuously assess the organization's security posture and identify areas for improvement. - Develop and implement proactive measures to mitigate security risks. - Stay updated on emerging cyber threats and technologies to recommend enhancements. Collaboration and Reporting : - Collaborate with IT, DevOps, and other stakeholders to ensure security is embedded in all aspects of operations. - Generate and present detailed incident reports, metrics, and performance dashboards to senior management. - Act as the primary point of contact for security audits and assessments. Qualifications and Skills : - Experience : Minimum of 10 years in cybersecurity, with at least 5 years in SOC operations or incident response roles. Technical Expertise : - Proficient in managing and configuring Azure Sentinel for SIEM operations. - Hands-on experience with SentinelOne for EDR solutions. - Knowledge of threat intelligence platforms, firewalls, IDS/IPS, and vulnerability management tools. - Certifications (Preferred) : CISSP, CISM, Azure Security Engineer Associate, SentinelOne Certified Administrator, or equivalent. - Leadership Skills : Strong ability to lead teams, manage crises, and communicate effectively with stakeholders. - Analytical Thinking : Expertise in threat detection, root cause analysis, and incident management. - Soft Skills : Excellent communication, problem-solving, and decision-making abilities. (ref:hirist.tech)

Location: bangalore, IN

Posted Date: 1/10/2025