Cyber Security SOC Lead

1 month ago

Hyderabad, India Tech Mahindra Full time

Job Description: Cybersecurity SEC Ops Lead

Location- Hyderabad

Experience- 7 to 10 years.


  • 7+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools.
  • Understanding the Business process of Client and resolving the Security and platform related issues within the SLA.
  • Responsible for end to end incident response, log analysis and collaborate with other teams to mitigate Security risks
  • Experience in various joint exercises such as purple teaming, blue teaming & red teaming along with table top exercises.
  • Perform Gap analysis and advise use cases in accordance with MITRE ATT&CK Framework.
  • Take up project work to engage, renew and deploy existing or New Security tools.
  • Suggest and contribute to yearly Cybersecurity Roadmap for the Client and review progress on quarterly basis.
  • Establish L1/L2/L3 structure for CyberSec operations.
  • Is part of the technical evaluation panel for hiring Security resources.
  • Review Pen test reports conducted by 3rd Party agencies, review severity and suggest remediation plans
  • Oversee Asset reconciliation program on Security tools.
  • Ensure adherence to MSA and leverage resources accordingly. Define Priority based on business requirement.
  • Regular Client interactions to understand concerns and channelize team’s efforts accordingly.
  • Perform Requirement gathering, License Management and devising best possible approach for onboarding new log sources.
  • Hands on experience with Security products such as SIEM, EDR. Vulnerability Management.
  • Worked productively together with the Client Information Security departments and teams.
  • Provide constant technical support for clients to Investigate and resolve the incidents raised based on SIEM logs.
  • Following ITIL process like Service level Agreement (SLA), Incident ticket, change management, service request, Service Desk.
  • Attending Daily and Weekly con-call with the Client team and Update the critical issues and the trend.
  • Preparing monthly, Weekly status reports and share the same to the Client during the reviews.


Experience -

  • Experience in Design and Architecture of SIEM Platform
  • Experience of working in large enterprise SOC
  • Preferably working for an MSSP provider
  • Understand the log collection methods i.e., pull and push methods
  • Review end to end SIEM solution
  • Expert in log & Flow source on boarding
  • Expert in normalization and log parsing
  • Security event fine tuning
  • Knowledge and skill of Logs source Parsing (SPL)
  • Knowledge and skill of Custom Data source parsing and integration
  • Create new use case and customize the existing use cases on SIEM
  • Expert in creating dashboard on the SIEM
  • Experience deal with commercial and custom application event collection, SIEM integration and onboarding
  • Strong knowledge of SIEM architecture, administration, and custom development architect SIEM Enterprise, SIEM Enterprise Security and SIEM ITSI
  • Experience integrating SIEM with heterogenous data sources
  • Proficient in SIEM query language (SPL) and experienced in developing and supporting custom SIEM search head applications for hyper specific use cases
  • Strong technical knowledge of, Firewalls and Load Balancing principles
  • Extensive experience of Agile and DevOps
  • Ansible, CD tools, particularly Jenkins
  • Scripting - Linux Shell & Python
  • Experienced user of Git / GitHub, SIEM Phantom, Syslog-ng and/or syslogs and Confluence
  • Linux administration (experience on Red Hat flavours desirable)
  • Understanding of Cyber Security concepts
  • Experience working with government entities
  • Previous role in a Cyber Security or CSOC related engineering team
  • SIEM SOAR playbook creation
  • SOAR configuration
  • UBA implementation and administration.


Please consider adding-

  • Lead incident response efforts during security breaches or incidents, including containment, investigation, and remediation activities. Engagement of forensics
  • SOC analysis skills ie Trend analysis, pattern recognition?
  • Able to diagnose root cause. Determine what is a false positive vs true positive??
  • Awareness of infrastructure. Eg switching, routing, vmware esxi, cloud technologies eg Office 365. Etc etc.
  • Understanding of security stack, eg mail filtering, application control, DLP etc etc.
  • Development of response plans.
  • Awareness of risk management principles. Likelihood, consequence etc etc.
  • Coaching junior analysts


Also soft skills eg-

  • Problem solving
  • Attention to detail
  • Communication
  • Leadership


Interested candidate please share resume to

  • Cyber Security Engineer

    1 week ago

    Hyderabad, India Tech Mahindra Full time

    Job Title: Cyber Security Operational Lead Experience: 10+ years Must Skills: SIEM, Cyber SOC, Vulnerability Management, EDR tools Location: Hyderabad Timings: General shift Notice period: Immediate to 60days. • 10+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools. •...

  • RA-CSR-Cyber-D&R-SOC- Hyd

    2 weeks ago

    Hyderabad, India Deloitte Full time

    Risk Advisory Cyber Risk What impact will you makeEvery day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential Deloitte is where...

  • RA-CSR-Cyber-D&R-SOC- Hyd

    2 weeks ago

    Hyderabad, India Deloitte Full time

    Risk Advisory Cyber Risk What impact will you make Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential Deloitte is...

  • RA-CSR-Cyber-D&R-SOC- Hyd

    2 weeks ago

    hyderabad, India Deloitte Full time

    Risk Advisory Cyber Risk What impact will you make Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential Deloitte is...

  • Cyber Security Engineer

    4 weeks ago

    hyderabad, India Tech Mahindra Full time

    Job Title: Cyber Security Operational LeadExperience: 10+ yearsMust Skills: SIEM, Cyber SOC, Vulnerability Management, EDR toolsLocation: HyderabadTimings: General shiftNotice period: Immediate to 60days.• 10+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools.•...

  • Cyber Security Trainer

    4 weeks ago

    Malkajgiri, Hyderabad, Telangana, India KLEAP Technologies Full time

    Looking for SOC and Ethical Hacking trainer for Hyderabad location. Fresher with hands on experience can apply. Designing and developing training programs: The trainer should be able to develop training programs that are effective, engaging, and relevant to the needs of the learners. This includes developing training materials such as course outlines,...

  • Qylis Technologies

    4 weeks ago

    Hyderabad, India QYLIS Full time

    Company Description : Qylis is a leading provider of innovative IT solutions, specializing in Cloud, Data & AI, and Cyber Security. We help businesses unlock the full potential of these technologies to achieve their goals and gain a competitive edge. Our unique approach focuses on delivering value through bespoke solutions tailored to customer specific...

  • Qylis Technologies

    4 weeks ago

    Hyderabad, India QYLIS Full time

    Company Description : Qylis is a leading provider of innovative IT solutions, specializing in Cloud, Data & AI, and Cyber Security. We help businesses unlock the full potential of these technologies to achieve their goals and gain a competitive edge. Our unique approach focuses on delivering value through bespoke solutions tailored to customer specific...

  • Qylis Technologies

    2 months ago

    hyderabad, India QYLIS Full time

    Company Description : Qylis is a leading provider of innovative IT solutions, specializing in Cloud, Data & AI, and Cyber Security. We help businesses unlock the full potential of these technologies to achieve their goals and gain a competitive edge. Our unique approach focuses on delivering value through bespoke solutions tailored to customer specific...

  • Cyber Security Engineer

    4 weeks ago

    Hyderabad, India Tech Mahindra Full time

    Job Title: Cyber Security Operational LeadExperience: 10+ yearsMust Skills: SIEM, Cyber SOC, Vulnerability Management, EDR toolsLocation: HyderabadTimings: General shiftNotice period: Immediate to 60days.• 10+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools. • Understanding...

  • Cyber Security Engineer

    4 weeks ago

    hyderabad, India Tech Mahindra Full time

    Job Title: Cyber Security Operational Lead Experience: 10+ years Must Skills: SIEM, Cyber SOC, Vulnerability Management, EDR tools Location: Hyderabad Timings: General shift Notice period: Immediate to 60days. • 10+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools. •...

  • Cyber Security Engineer

    4 weeks ago

    Hyderabad, India Tech Mahindra Full time

    Job Title: Cyber Security Operational LeadExperience: 10+ yearsMust Skills: SIEM, Cyber SOC, Vulnerability Management, EDR toolsLocation: HyderabadTimings: General shiftNotice period: Immediate to 60days.• 10+ years of experience in delivering Cybersecurity Operations with hands on experience on SOC, Vulnerability Management, EDR tools. • Understanding...

  • Senior Cyber Security Engineer

    5 days ago

    Hyderabad, India VOCO TECHNOLOGIES PRIVATE LIMITED Full time

    Role: XSOAR Automation EngineerLocation : Hyderabad/BangaloreBuild a career with confidence :Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we've led in inventing new technologies and entirely new...

  • Cyber Security

    4 days ago

    Hyderabad, India Carrier Full time

    Country: IndiaLocation: Building No 12D, Floor 5, Raheja Mindspace, Cyberabad, Madhapur, Hyderabad - 500081, Telangana, IndiaTitle: Cyber Security LeaderLocation: Bengaluru/HyderabadJob Type: Full TimeBuild a career with confidence:Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that...

  • Cyber Security

    4 days ago

    Hyderabad, India Carrier Full time

    About the role : Leads multiple teams headed by Cyber security managers or supervisors. Contributes to the design, development and implementation of countermeasures, system integration, and tools specific to Cyber and Information Operations. May prepare and presents technical reports and briefings. May perform documentation, vetting and weaponize of...

  • Cyber Security

    4 days ago

    hyderabad, India Carrier Full time

    Country: IndiaLocation: Building No 12D, Floor 5, Raheja Mindspace, Cyberabad, Madhapur, Hyderabad - 500081, Telangana, IndiaTitle: Cyber Security Leader Location: Bengaluru/Hyderabad Job Type: Full Time Build a career with confidence : Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating...

  • Cyber Security Engineer, Lead

    4 days ago

    Hyderabad, India Qualcomm Full time

    Company: Qualcomm India Private Limited Job Area: Information Technology Group, Information Technology Group > Cyber Security Engineering General Summary: Looking for a seasoned professional with experience in Vulnerability Analysis, Vulnerability Assessment and Vulnerability Management. The candidate will be amember of the Cyber...

  • Cyber Security Engineer, Lead

    4 days ago

    hyderabad, India Qualcomm Full time

    Company: Qualcomm India Private Limited Job Area: Information Technology Group, Information Technology Group > Cyber Security Engineering General Summary: Looking for a seasoned professional with experience in Vulnerability Analysis, Vulnerability Assessment and Vulnerability Management. The candidate will be amember of the Cyber...

  • SIEM Engineer

    3 weeks ago

    hyderabad, India Aceseekers Full time

    Job Description : Experience : 4 - 10 Years1) As a SIEM Engineer you will be managing and providing SIEM health and operational support, including supporting architecture changes, tool deployments and advanced content development.2) Perform SIEM configuration management, and troubleshooting, addressing complex issues and day to day operations management3)...

  • Cyber Security Instructor

    1 week ago

    Kukatpalli, Hyderabad, Telangana, India KLEAP Institute of Information Security Full time

    **Position**: Cybersecurity Technical Trainer (2 Openings) **Location**: Hyderabad **Responsibilities**: - Deliver high-quality virtual and in-person technical training in Cyber Security and Ethical Hacking. - Develop and update course materials to ensure they reflect current industry practices and trends. - Retain an up-to-date knowledge of current...