Cyber Security Operations Security Lead Consultant

About Sopra Steria

Sopra Steria, a major Tech player in Europe with 50,000 employees in nearly 30 countries, is recognised for its consulting, digital services and solutions. It helps its clients drive their digital transformation and obtain tangible and sustainable benefits. The Group provides end-to-end solutions to make large companies and organisations more competitive by combining in-depth knowledge of a wide range of business sectors and innovative technologies with a collaborative approach. Sopra Steria places people at the heart of everything it does and is committed to putting digital to work for its clients in order to build a positive future for all. In 2024, the Group generated revenues of €5.8 billion.

The world is how we shape it.

Position - Operations Security Consultant

Experience: 8 to 12 years

Location: Chennai

Education: B.E./ B.Tech./ MCA

Job Profile

The Operations Security Consultant is responsible for the end-to-end management of security operations across multiple client environments. The role demands strong leadership in overseeing SOC operations, incident response, threat detection, compliance, and risk management. The ideal candidate will possess extensive hands-on experience in a multi-customer SIEM (QRadar) environment, a deep understanding of security frameworks, and the ability to build trusted relationships with internal and external stakeholders.

Key Roles & Responsibilities

1. Oversee Daily security operations and maintain operational excellence ensuring availability, performance, and reliability of security tools and processes.
2. Manage 24/7 monitoring, triage, investigation, and resolution of security incidents via SIEM (QRadar). Coordinate incident management efforts across internal teams and external stakeholders.
3. Develop, fine-tune, and manage security detection rules, use cases, and threat intelligence integration.
4. Implement continuous improvement processes using KPIs, operational reviews, and performance metrics.
5. Manage Lead SOC analysts, threat hunters, and incident responders.
6. Facilitate collaboration across engineering, compliance, and client teams.
7. Ensure compliance with ISO 27001, NIST CSF, CIS Controls, DORA, GDPR, and client-specific standards.
8. Lead preparation of audits, client reports, and executive dashboards.
9. Maintain risk treatment plans aligned with ISO 27001 standards.
10. Conduct vulnerability assessments and prioritize remediation using EBIOS methodology.

Desired Skills

1. Hands-on expertise with QRadar SIEM, SOC operations, and incident response.
2. Proficiency in security frameworks: NIST CSF, CIS Controls, DORA, GDPR.
3. Experience with vulnerability management, threat hunting, and risk assessment methodologies.
4. Familiarity with automation, SOAR solutions, and operational workflow optimization.
5. Strong experience on at least one technical environment and related cybersecurity topics: Cloud (AWS/Azure), Mainframe, Datawarehouse, Database, O365

Certifications (Preferred)

1. Security: CISSP, CISM (any one)

Technical Skills (Minimum 3 to 4 from below)

1. Environments: Cloud (AWS/Azure), Windows, Linux, Mainframe, Data Warehouse, Database.
2. Tools: Qualys, Splunk, ServiceNow, PAM, IAM, Palo Alto, Fortinet, SOC tools / EDR (MDR), AppSec, Bastion, Network Management, Micro-Segmentation, Vaults & Secret Management, PKI, Vulnerability Scanning (QRadar, Nessus).

Qualification includes Bachelor / Masters Degree in Information Technology, Cybersecurity or Engineering, or equivalent qualification

Should be open to work in European shift hours.

At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences.

All of our positions are open to people with disabilities.