Information Security Lead - SIEM/SOAR

Description :

Total Experience :8 - 10+ years (with 5+ in SOC Leadership)

Job Skills :

- 10+ years in Information Security, with at least 5 in SOC or Managed Security leadership.

- Deep understanding of cloud architectures, workload protection, and identity management.

- Hands-on experience with SIEM/SOAR tools (Splunk, ArcSight, Cortex XSIAM, QRadar, Microsoft Sentinel).

- Expertise in threat hunting, malware analysis, endpoint security (EDR/XDR), and cloud security monitoring.

- Proficiency in tools such as WAF, DLP, Burp Suite, and Nessus.

- Strong understanding of hybrid security models and advanced persistent threat (APT) response.

- Familiarity with ITIL or service delivery frameworks is a plus.

- Certifications such as CEH, OSCP, CISSP, or relevant cloud security credentials (CCSP, AWS Security Specialty) preferred.

Responsibilities :

- Lead SOC operations across L1L3 analysts, ensuring 24/7 threat monitoring.

- Drive vulnerability management, patch governance, and proactive threat mitigation.

- Manage and secure multi-cloud environments, ensuring compliance and incident readiness.

- Oversee cloud security posture management (CSPM) and identity access governance (IAM).

- Lead incident response, RCA, and recovery for major on-prem and cloud-based incidents.

- Conduct enterprise-wide risk assessments, audits, and compliance checks.

- Ensure alignment with frameworks like NIST, GDPR, HIPAA, PCI-DSS, and ISO 27001.

- Define and implement security policies, playbooks, and automation workflows for cloud and

on-prem systems.

- Present dashboards, risk reports, and threat trends to executive leadership.

- Manage relationships with technology partners, MSSPs, and cloud vendors.

Note :

OSCP certification and cloud security experience are mandatory for these roles. Only shortlisted candidates will be contacted.