As the Security Operations Center Manager, you will be responsible for leading and managing the Security Operations Center (SOC) team in Pune/Indore. You will oversee the day-to-day operations of the SOC, ensuring the timely detection, analysis, and response to security incidents. You will collaborate with various teams, including IT, security engineering, and compliance, to enhance the organization's security posture.

Key Responsibilities :

- Lead and mentor a team of security analysts, providing guidance and support in incident

response, threat hunting, and security monitoring.

- Develop and implement SOC processes and procedures to ensure efficient and effective security operations.

- Oversee the deployment, configuration, and maintenance of SIEM tools, specifically Microsoft Sentinel/Azure Sentinel, to enhance threat detection capabilities.

- Design, develop, and implement detection rules, alerts, and playbooks within the SIEM platform to automate incident response.

- Conduct regular threat hunting activities to proactively identify and mitigate potential security threats.

- Manage and improve incident response processes, ensuring timely and effective resolution of security incidents.

- Perform fine-tuning of security tools and detection rules to reduce false positives and improve the accuracy of alerts.

- Generate regular reports on SOC performance, security incidents, and threat landscape to inform stakeholders and improve security posture.

- Stay up-to-date with the latest security threats, vulnerabilities, and technologies to continuously improve the SOC's capabilities.

- Collaborate with other IT and security teams to implement security best practices and ensure compliance with relevant regulations.

Required Skillset :

- Demonstrated ability to lead and manage a Security Operations Center team, fostering a collaborative and high-performance environment.

- Proven expertise in SIEM technologies, particularly Microsoft Sentinel/Azure Sentinel, including deployment, configuration, and administration.

- Strong understanding of incident response methodologies and experience in managing security incidents from detection to resolution.

- Proficiency in threat hunting techniques and the ability to proactively identify and mitigate potential security threats.

- Excellent analytical and problem-solving skills, with the ability to analyze security data and identify patterns of malicious activity.

- Solid understanding of security principles, technologies, and best practices.

- Experience in developing and implementing detection rules, alerts, and playbooks within a SIEM platform.

- Strong communication and interpersonal skills, with the ability to effectively communicate technical information to both technical and non-technical audiences.

- Experience with KQL (Kusto Query Language) for querying and analyzing data in Azure Sentinel.