SOC Manager
Noida
Paytm Payments Bank
Information Security Team-SOC Manager Location: NOIDA2) Education: BE/B. Tech./MCA/MS/M. Tech.3)
Responsibilities:a) Creation of supporting SOPs inline to the policy requirementsb)b) Integration of all new devices (on premise and AWS cloud) with SIEMc) Experience in doing threat hunting, red teaming & cyber drills.d) Monitoring the status of integration for all devices and supporting teams to ensure nitration in case of any breakagee) Support team for defining SOPs and performing triagef) Ensuring functioning of SIEM tool and the related processes as per the mentioned requirements
g) Reporting computer security events, in accordance with established processes and proceduresh) Coordinate with System Owners, and others (IDC/NOC/TOPS/ Enterprise IT) as needed to analyze events and drive necessary requirements for closurei) Support ongoing analysis and response of computer security incidents by SOC(Monitoring) Teamj) Creation of new use cases/reports as per business requirements.i) Creation of new use-cases as per specific to banking environmentii) Creation of new dashboards in SIEM console as per requirement"iii) SIEM tickets closurek) Drive key security operations responsibility (eg. Secure code review, Configuration review etc.)4) Experience / Job Competencies / Success Factors :a) 10+ years technical experience working in a SOC or incident response. Experience working with BFSI sector and specially Bank on similar role preferredb) Experience with one or more Security Information and Event Management (SIEM) solutions specially with Dnifc) In-depth understanding of security threats, threat attack methods and the current threat environmentd) Experience in security monitoring, Incident Response (IR), security tools configuration and security remediatione) Must have excellent troubleshooting and analytical skills. Must be able to clearly articulate and propose security solutions in business terms. Must be able to multitask in a fast-paced environment.f) Provide Support for audit and compliance requirements within defined timelinesg) Must be able to work in a fast-paced environment with tight deadlines and changing prioritiesh) Understanding of network protocols, network capture/analysis tools such as Wireshark.i) Understanding of Linux and Windows operating systems and OS event loggingj) Understanding of working with AWS environmentk) Must be comfortable working with different type of security solutions in a diverse IT infrastructure environment like :
i) FireEye network APT, Paloalto Firewalls, WAF - F5, HIPS -TrendMicro, PIM- Cyber Arc, Qualys Vulnerability Scanner, TrendMicro Endpoint security suite and APT , Honey Pot-Smokescreenl) Experience in developing production SIEM use casesm) Ability to work non-core hours (swing or night shift) if necessaryn) Security + or CEH, CISSP, SANS Course of Incident Response, Digital Forensics
Responsibilities:a) Creation of supporting SOPs inline to the policy requirementsb)b) Integration of all new devices (on premise and AWS cloud) with SIEMc) Experience in doing threat hunting, red teaming & cyber drills.d) Monitoring the status of integration for all devices and supporting teams to ensure nitration in case of any breakagee) Support team for defining SOPs and performing triagef) Ensuring functioning of SIEM tool and the related processes as per the mentioned requirements
g) Reporting computer security events, in accordance with established processes and proceduresh) Coordinate with System Owners, and others (IDC/NOC/TOPS/ Enterprise IT) as needed to analyze events and drive necessary requirements for closurei) Support ongoing analysis and response of computer security incidents by SOC(Monitoring) Teamj) Creation of new use cases/reports as per business requirements.i) Creation of new use-cases as per specific to banking environmentii) Creation of new dashboards in SIEM console as per requirement"iii) SIEM tickets closurek) Drive key security operations responsibility (eg. Secure code review, Configuration review etc.)4) Experience / Job Competencies / Success Factors :a) 10+ years technical experience working in a SOC or incident response. Experience working with BFSI sector and specially Bank on similar role preferredb) Experience with one or more Security Information and Event Management (SIEM) solutions specially with Dnifc) In-depth understanding of security threats, threat attack methods and the current threat environmentd) Experience in security monitoring, Incident Response (IR), security tools configuration and security remediatione) Must have excellent troubleshooting and analytical skills. Must be able to clearly articulate and propose security solutions in business terms. Must be able to multitask in a fast-paced environment.f) Provide Support for audit and compliance requirements within defined timelinesg) Must be able to work in a fast-paced environment with tight deadlines and changing prioritiesh) Understanding of network protocols, network capture/analysis tools such as Wireshark.i) Understanding of Linux and Windows operating systems and OS event loggingj) Understanding of working with AWS environmentk) Must be comfortable working with different type of security solutions in a diverse IT infrastructure environment like :
i) FireEye network APT, Paloalto Firewalls, WAF - F5, HIPS -TrendMicro, PIM- Cyber Arc, Qualys Vulnerability Scanner, TrendMicro Endpoint security suite and APT , Honey Pot-Smokescreenl) Experience in developing production SIEM use casesm) Ability to work non-core hours (swing or night shift) if necessaryn) Security + or CEH, CISSP, SANS Course of Incident Response, Digital Forensics
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
13
1
0
Category:
Leadership Jobs
Tags: APT AWS Banking C CEH CISSP Cloud Compliance Endpoint security Firewalls Forensics Incident response IT infrastructure Linux Monitoring Qualys Red team SANS SIEM SOC Windows
Perks/benefits: Team events
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Product Security Engineer jobsInformation Security Specialist jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSystems Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsInformation Security Manager jobsCyber Security Specialist jobsIT Security Analyst jobsIT Security Engineer jobsChief Information Security Officer jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Information Security Engineer jobsSenior Cyber Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
TS/SCI jobsEDR jobsEncryption jobsJava jobsBash jobsThreat detection jobsSplunk jobsTerraform jobsTop Secret jobsIDS jobsMalware jobsRMF jobsSDLC jobsIPS jobsSQL jobsSOC 2 jobsForensics jobsFinance jobsDocker jobsGIAC jobsCompTIA jobsActive Directory jobsIntrusion detection jobsOWASP jobsITIL jobs
VPN jobsHIPAA jobsAnsible jobsDoDD 8570 jobsIT infrastructure jobsTCP/IP jobsOSCP jobsCRISC jobsData Analytics jobsClearance Required jobsMITRE ATT&CK jobsCCSP jobsNIST 800-53 jobsBanking jobsZero Trust jobsSOAR jobsDNS jobsEndpoint security jobsUNIX jobsIndustrial jobsSAP jobsSOX jobsJira jobsMachine Learning jobsJavaScript jobs