SOC Manager
Noida
Paytm Payments Bank
Information Security Team-SOC Manager Location: NOIDA2) Education: BE/B. Tech./MCA/MS/M. Tech.3)
Responsibilities:a) Creation of supporting SOPs inline to the policy requirementsb)b) Integration of all new devices (on premise and AWS cloud) with SIEMc) Experience in doing threat hunting, red teaming & cyber drills.d) Monitoring the status of integration for all devices and supporting teams to ensure nitration in case of any breakagee) Support team for defining SOPs and performing triagef) Ensuring functioning of SIEM tool and the related processes as per the mentioned requirements
g) Reporting computer security events, in accordance with established processes and proceduresh) Coordinate with System Owners, and others (IDC/NOC/TOPS/ Enterprise IT) as needed to analyze events and drive necessary requirements for closurei) Support ongoing analysis and response of computer security incidents by SOC(Monitoring) Teamj) Creation of new use cases/reports as per business requirements.i) Creation of new use-cases as per specific to banking environmentii) Creation of new dashboards in SIEM console as per requirement"iii) SIEM tickets closurek) Drive key security operations responsibility (eg. Secure code review, Configuration review etc.)4) Experience / Job Competencies / Success Factors :a) 10+ years technical experience working in a SOC or incident response. Experience working with BFSI sector and specially Bank on similar role preferredb) Experience with one or more Security Information and Event Management (SIEM) solutions specially with Dnifc) In-depth understanding of security threats, threat attack methods and the current threat environmentd) Experience in security monitoring, Incident Response (IR), security tools configuration and security remediatione) Must have excellent troubleshooting and analytical skills. Must be able to clearly articulate and propose security solutions in business terms. Must be able to multitask in a fast-paced environment.f) Provide Support for audit and compliance requirements within defined timelinesg) Must be able to work in a fast-paced environment with tight deadlines and changing prioritiesh) Understanding of network protocols, network capture/analysis tools such as Wireshark.i) Understanding of Linux and Windows operating systems and OS event loggingj) Understanding of working with AWS environmentk) Must be comfortable working with different type of security solutions in a diverse IT infrastructure environment like :
i) FireEye network APT, Paloalto Firewalls, WAF - F5, HIPS -TrendMicro, PIM- Cyber Arc, Qualys Vulnerability Scanner, TrendMicro Endpoint security suite and APT , Honey Pot-Smokescreenl) Experience in developing production SIEM use casesm) Ability to work non-core hours (swing or night shift) if necessaryn) Security + or CEH, CISSP, SANS Course of Incident Response, Digital Forensics
Responsibilities:a) Creation of supporting SOPs inline to the policy requirementsb)b) Integration of all new devices (on premise and AWS cloud) with SIEMc) Experience in doing threat hunting, red teaming & cyber drills.d) Monitoring the status of integration for all devices and supporting teams to ensure nitration in case of any breakagee) Support team for defining SOPs and performing triagef) Ensuring functioning of SIEM tool and the related processes as per the mentioned requirements
g) Reporting computer security events, in accordance with established processes and proceduresh) Coordinate with System Owners, and others (IDC/NOC/TOPS/ Enterprise IT) as needed to analyze events and drive necessary requirements for closurei) Support ongoing analysis and response of computer security incidents by SOC(Monitoring) Teamj) Creation of new use cases/reports as per business requirements.i) Creation of new use-cases as per specific to banking environmentii) Creation of new dashboards in SIEM console as per requirement"iii) SIEM tickets closurek) Drive key security operations responsibility (eg. Secure code review, Configuration review etc.)4) Experience / Job Competencies / Success Factors :a) 10+ years technical experience working in a SOC or incident response. Experience working with BFSI sector and specially Bank on similar role preferredb) Experience with one or more Security Information and Event Management (SIEM) solutions specially with Dnifc) In-depth understanding of security threats, threat attack methods and the current threat environmentd) Experience in security monitoring, Incident Response (IR), security tools configuration and security remediatione) Must have excellent troubleshooting and analytical skills. Must be able to clearly articulate and propose security solutions in business terms. Must be able to multitask in a fast-paced environment.f) Provide Support for audit and compliance requirements within defined timelinesg) Must be able to work in a fast-paced environment with tight deadlines and changing prioritiesh) Understanding of network protocols, network capture/analysis tools such as Wireshark.i) Understanding of Linux and Windows operating systems and OS event loggingj) Understanding of working with AWS environmentk) Must be comfortable working with different type of security solutions in a diverse IT infrastructure environment like :
i) FireEye network APT, Paloalto Firewalls, WAF - F5, HIPS -TrendMicro, PIM- Cyber Arc, Qualys Vulnerability Scanner, TrendMicro Endpoint security suite and APT , Honey Pot-Smokescreenl) Experience in developing production SIEM use casesm) Ability to work non-core hours (swing or night shift) if necessaryn) Security + or CEH, CISSP, SANS Course of Incident Response, Digital Forensics
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Category:
Leadership Jobs
Tags: APT AWS Banking C CEH CISSP Cloud Compliance Endpoint security Firewalls Forensics Incident response IT infrastructure Linux Monitoring Qualys Red team SANS SIEM SOC Windows
Perks/benefits: Team events
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Product Security Engineer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSystems Engineer jobsSenior Information Security Analyst jobsInformation Security Manager jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Product Security Engineer jobsSenior Cyber Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsThreat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobs
SaaS jobsTS/SCI jobsBash jobsEDR jobsEncryption jobsIDS jobsThreat detection jobsIPS jobsSplunk jobsMalware jobsSDLC jobsTerraform jobsTop Secret jobsFinance jobsSQL jobsForensics jobsDocker jobsRMF jobsIntrusion detection jobsCompTIA jobsSOC 2 jobsITIL jobsOWASP jobsGIAC jobsActive Directory jobs
DoDD 8570 jobsAnsible jobsHIPAA jobsVPN jobsTCP/IP jobsOSCP jobsData Analytics jobsSOAR jobsIT infrastructure jobsUNIX jobsSANS jobsMITRE ATT&CK jobsClearance Required jobsCCSP jobsSAP jobsCRISC jobsJira jobsBanking jobsSOX jobsJavaScript jobsPolygraph jobsNIST 800-53 jobsSecurity strategy jobsMachine Learning jobsIndustrial jobs