SOC Operational Readiness and Incident Response Lead

SOC Operational Readiness and Incident Response Lead

Senior Cyber Security Manager (I)

The role:

We are seeking a skilled and experienced Cyber Security Operational Readiness and Incident Response Lead in Hyderabad, India.

The successful candidate will be responsible for overseeing the readiness and response operations for security incidents within the organisation.  You will be an experienced incident responder and will be able to lead the coordination and implementation of incident response plans, training and preparation activities.

The role requires a deep understanding of incident response management, operational readiness, and the ability to lead cross-functional teams during security incidents.  This is a great opportunity for a suitably experienced individual to directly influence and improve the security posture of the company.

Are you our next star player?
As a Cyber Security Operational Readiness and Incident Response Lead you will become a pivotal member of the team supporting the organisation’s cyber defence strategy. The Cyber Security team provides an exciting and challenging environment, using best of breed tools and methodologies to protect and strengthen the company’s IT platforms.

Why we need you

As a SOC Operational Readiness and Incident Response Lead you will:

• Serve as the Incident Commander during security incidents and lead the response effort, ensuring effective coordination between various teams.
• Develop and implement incident response plans to utilise during security incidents.
• Maintain situational awareness during incidents and make real-time decisions to protect confidentiality, integrity and availability.
• Be a senior leader to the 1st line SOC in Hyderabad, India.
• Develop and maintain shift patterns for 24/7 operations
• Develop and maintain the organisation’s operational readiness plans, including emergency response protocols, disaster recovery plans, and business continuity strategies.
• Conduct regular simulations, and exercises to test the effectiveness of emergency response plans and ensure readiness.
• Evaluate the organisation’s current preparedness levels and identify areas for improvement.
• Design and deliver training programs for staff on emergency procedures, incident command systems, and operational readiness.
• Conduct post-incident reviews and debriefings to capture lessons learned and improve future response efforts.
• Own post-incident review actions and tracking to ensure overall risk reduction.
• Liaise with internal stakeholders, including executive leadership, to keep them informed of incident status and response efforts.
• Develop and maintain Cyber Security Champion programme within the business and create a thriving environment to highlight and reduce risk.
• Monitor emerging threats and provide recommendations for proactive measures to enhance the organisation’s resilience.
• Prepare and submit reports on incident responses, readiness assessments, training, and other relevant metrics to business stakeholders, audit teams and regulators.
• Act as the primary point of contact for all security incidents during the shift, providing guidance and escalation as needed.

Who we’re looking for
An experienced IT professional capable of providing expertise on many of the aspects of cyber security.

Your experience & education:

• Bachelor’s or master’s degree in computer science, Information Technology, Network Security, Information Security, or a related field.
• Experience in cyber security, with demonstrated experience in security analysis, incident response, threat intelligence and threat hunting.
• Experience with security tools such as IDS/IPS, SIEM, endpoint protection, proxy, cloud security and vulnerability scanners.

Your skills:

• Strong leadership and decision-making skills, especially under pressure.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with diverse teams.
• In-depth knowledge of incident response principles, operational readiness, and disaster recovery.
• Strong knowledge of security best practices, tools, and techniques.
• Experience as an Incident Commander or in a similar leadership role during emergency response operations.
• Understanding of security technologies such as firewalls, intrusion detection and prevention systems, access control, encryption, and anti-virus/malware solutions.
• Strong ethical values, integrity, and a commitment to confidentiality.
• Strong analytical and excellent problem-solving skills.
• Excellent written and verbal technical & business communication skills (English).
• Ability to work effectively both independently and as part of a team.
• Strong sense of urgency and ability to work under pressure.
• Excellent task management and planning skills for self/team.

Work schedule:

24/7 shift rotation including weekend cover