Key Responsibilities:

1. Security Monitoring & Incident Management

• Oversee end-to-end detection, triage, analysis, and response to security incidents using SIEM and complementary security platforms.
• Ensure timely escalation, coordination, and resolution of critical incidents and vulnerabilities to minimize risk impact.

2. Technology Oversight

• Manage and continuously improve SOC tools including SIEM, privileged identity management (PIM), content filtering systems, firewalls, proxies, and web application firewalls (WAFs).
• Evaluate existing toolsets, conduct gap assessments, and recommend upgrades or alternatives aligned with organizational needs.

3. Team Leadership

• Supervise, mentor, and develop a team of 4–6 SOC Analysts to maintain high performance and operational excellence.
• Conduct regular performance reviews, set development goals, and foster a culture of ownership and accountability.

4. Training and Development

• Design and deliver ongoing technical training and hands-on simulations to enhance incident response capabilities.
• Ensure team proficiency in current threats, mitigation strategies, and evolving cyberattack techniques.

5. Policy and Process Management

• Maintain and regularly update SOC workflows, standard operating procedures (SOPs), and playbooks to ensure consistency and compliance.
• Align processes with relevant security frameworks and regulatory requirements.

6. Cross-functional Coordination

• Collaborate with IT, network, and application teams across global offices and external partners to ensure coordinated threat response.
• Serve as a key point of contact for joint investigations and risk mitigation efforts.

7. Reporting and Communication

• Provide timely, accurate, and actionable reporting of security incidents and SOC metrics to senior management and stakeholders.
• Deliver executive summaries and post-incident reports that communicate risk, impact, and recommendations effectively.

8. Strategic Contribution

• Contribute to the organization’s broader cybersecurity strategy by identifying operational gaps, proposing solutions, and implementing improvements in the SOC environment.
• Participate in planning for future security capabilities, staffing needs, and technology roadmaps.

• 6–10 years of experience in cybersecurity
• Over 3 years of experience in people leadership
• BPO experience is a plus
• Hands-on experience with SIEM, PIM, content filtering, and firewall technologies
• Strong knowledge and practical expertise in network, firewall, and web security, including web application firewalls and proxy solutions
• Designs and delivers training programs to improve SOC team’s technical and operational capabilities
• Conducts regular performance evaluations with constructive feedback to support individual and team growth
• Collaborates with cross-functional teams across global regions, including BPO setups, to handle security incidents
• Ensures prompt and accurate reporting of security incidents to stakeholders
• Manages and enhances SOC tools for optimal availability, performance, and efficiency
• Leads routine reviews and updates of SOC policies and procedures to stay aligned with current security standards