HamburgerMenu
hirist

Artificial Intelligence

Machine Learning

NLP

Generative AI

Predictive Modeling

Query Segmentation

AI Interface

LLM

Deep Learning

MLOps

Security Architect - AI

Cloud Architect - ML/AI

Data Scientist

Data Modeling

Data Analytics & BI

Data Engineering

Backend Development

Frontend Development

Full Stack

Mobile Applications

Emerging Technologies

DevOps / SRE

CyberSecurity

Quality Assurance

Platform Engineering / SAP/Oracle

Product Management

Business Analysis and Project Management

UI & Design

Semiconductor/VLSI/EDA

Others

Director/Head of Security Operations Center

ResourceTree Global Services Pvt Ltd
Chennai
13 - 17 Years
SecuritySecurity Operations CenterIT HeadSecurity HeadMSSPCyber SecuritySplunkPalo Alto FirewallSIEMSOAR

Posted on: 26/10/2025

Job Description

Description :

- Key Competencies :

- Strategic Vision Ability to align SOC service evolution with MSSP business objectives.

- Technical Skills Deep understanding of modern detection and response tools, automation, and integration frameworks.

- Client Orientation Skilled in stakeholder engagement, reporting, and service quality management.

- Operational Excellence Expertise in building scalable 24x7 operations with consistent quality.

- Leadership Strong people management, mentoring, and cross-team collaboration abilities.

- Innovation Aptitude for evaluating and operationalizing emerging SOC technologies.

- Deep understanding of modern detection and response tools, automation, and integration frameworks.

- Communication Ability to present complex technical insights to executives and clients clearly and effectively.

- Responsible for driving execution of daily, weekly, and monthly metrics for statistical threats and KPIs.

- Coordinate with global stakeholders along with the Senior management during contingency scenarios/ high severity incidents to ensure responsive actions are communicated in timely manner.

- Profile Description :

- 13- 15 years of experience in cybersecurity operations, with at least 5 years in SOC or MSSP leadership.

- Proven experience managing multi-tenant SOC environments with diverse customer infrastructures.

- Hands-on expertise in :

1. Splunk Enterprise Security (use case design, data onboarding, SPL optimization).

2. Palo Alto Cortex XSOAR (playbook automation, integration management, case handling).

3. Google SecOps (Chronicle + SOAR) (rule development, analytics, log pipelines).

- Strong understanding of SIEM/SOAR architectures, EDR, NDR, cloud telemetry, and threat intel integration.

- Experience defining and managing SOC SLAs, client KPIs, and service delivery metrics.

Key Responsibilities :

Leadership and Operations Management :

- Lead and manage SOC functions comprising Detection, Incident Response, and SOC Engineering teams across multiple shifts and geographies.

- Define and enforce SOC service delivery models, operating procedures, and SLAs aligned with client contracts.

- Oversee day-to-day SOC operations for multiple customers with varying environments (on-prem, cloud, hybrid).

- Ensure effective handover, escalation, and quality assurance across all shifts.

- Drive KPIs for detection coverage, mean time to detect/respond (MTTD/MTTR), and client satisfaction.

Incident Response and Threat Management :

- Oversee the end-to-end incident lifecycle : detection, triage, containment, eradication, and recovery.

- Establish and maintain client-specific runbooks, escalation matrices, and response playbooks.

- Guide major incident response efforts and lead investigations for high-severity or high-impact events.

- Ensure timely communication and coordination with client security teams during incidents.

Client Engagement and Risk Reporting :

- Serve as the primary SOC interface for strategic customer engagements.

- Prepare and deliver executive risk reports, incident summaries, and detection coverage dashboards to client management teams.

- Translate complex technical risks into actionable business insights for diverse client audiences.

Technology and Engineering Excellence :

- Provide technical direction for SIEM/SOAR/Threat Intelligence stack optimization and automation.

- Lead the design and maintenance of multi-tenant architectures ensuring data segregation, scalability, and compliance.

- Direct the automation of repetitive analyst tasks through playbooks and integrations in Cortex XSOAR.

- Evaluate and implement emerging technologies in AI-driven detection, UEBA, threat intelligence correlation, and SOAR orchestration.

- Maintain governance for log ingestion, parser accuracy, and retention policies across client environments.

Innovation and Technology Evaluation :

- Continuously assess and pilot next-generation tools in SIEM, SOAR, Threat Intel, and AI/ML-based detection.

- Build business cases and lead proofs of concept (POCs) for promising platforms and integrations.

- Foster a culture of experimentation, automation, and measurable improvement within the SOC.


info-icon

Did you find something suspicious?

Posted By

Madhura Joshi

Recruitment Consultant at ResourceTree Global Services Pvt Ltd

Last Active: 4 Dec 2025

Job Views:  
128
Applications:  45
Recruiter Actions:  16

Posted in

CyberSecurity

Functional Area

IT Security

Job Code

1564705

Jobs by location

Interview Questions for you

View All
Blog for regisnation

How to Write Leave Application for Urgent Work: Format & Samples (2025)

Blog for regisnation

Top 90+ Machine Learning Interview Questions and Answers

Blog for regisnation

Top 40+ Deep Learning Interview Questions and Answers