Director - Cyber Defense / SOC
Bengaluru
Saviynt
Embrace Zero Trust, secure sensitive & privileged access, and stay in continuous compliance with the world’s #1 cloud identity governance platform.
We are seeking an experienced Director of Cyber Defense to lead and enhance ourorganization’s cybersecurity capabilities. This role is responsible for overseeing the SecurityOperations Centre (SOC), Attack Surface Management, Incident Response and CrisisManagement, and Dark Web Monitoring. The ideal candidate must have solid CyberDefense practitioner experience and a proven track record of 15+ years in Cyber Security,with 5+ years leading cybersecurity teams and driving strategic security initiatives.
Key Responsibilities
Lead and mature the 24/7 Security Operations Centre (SOC) to detect, analyze, andrespond to cyber threats in real-time. Establish playbooks, escalation procedures, and cross-functional coordination forhandling critical security incidents. Dive deep into technical aspects of escalated incidents, in partnership with otherCyber Defense leads and cross functional peers Direct Incident Response (IR) and Crisis Management efforts, ensuring rapidcontainment, mitigation, and recovery from cyber incidents. Lead forensic investigations and post-incident reviews to improve security postureand prevent recurrence. Oversee Attack Surface Management to continuously assess, monitor, and reducethe organization’s exposure to cyber risks. Oversee Dark Web Monitoring initiatives to identify and assess leaked credentials,insider threats, and external attack indicators. Collaborate with Threat Intelligence teams to track adversary tactics, techniques, andprocedures (TTPs). Develop and execute a Cyber Defense strategy, aligning security operations withbusiness objectives. Manage, mentor, and grow a team of cybersecurity professionals across SOC andCyber Defense functions. Partner with IT, Risk, Legal, and Compliance teams to ensure alignment with securityframeworks and regulations. Present key cyber risk metrics, threat trends, and program updates to executiveleadership.
Qualifications & Experience 15+ years of overall experience including 5+ years leading cybersecurity teams inSOC and/or Cyber Defense Strong leadership and crisis management skills with experience handling majorsecurity incidents and executive-level communications. Deep expertise in MITRE ATT&CK, threat intelligence frameworks, adversaryemulation, and digital forensics. Proficiency working with cloud service providers such as AWS, Azure, GCP and mustbe able to demonstrate ability to effectively conduct IR on incidents within thesecloud environments Proficiency in SIEM, SOAR, EDR/XDR Experience implementing cyber defense strategies in large-scale enterpriseenvironments. Familiarity with regulatory requirements and compliance frameworks (NIST, CIS, ISO27001, GDPR, etc.). Strong knowledge of offensive security techniques and how to defend against them.
Preferred Certifications CISSP, CISM, GIAC (GCTI, GCIH, GCFA, GNFA, GDAT), CCSP, or equivalent. AWS/Azure/GCP Security certifications are a plus
Key Responsibilities
Lead and mature the 24/7 Security Operations Centre (SOC) to detect, analyze, andrespond to cyber threats in real-time. Establish playbooks, escalation procedures, and cross-functional coordination forhandling critical security incidents. Dive deep into technical aspects of escalated incidents, in partnership with otherCyber Defense leads and cross functional peers Direct Incident Response (IR) and Crisis Management efforts, ensuring rapidcontainment, mitigation, and recovery from cyber incidents. Lead forensic investigations and post-incident reviews to improve security postureand prevent recurrence. Oversee Attack Surface Management to continuously assess, monitor, and reducethe organization’s exposure to cyber risks. Oversee Dark Web Monitoring initiatives to identify and assess leaked credentials,insider threats, and external attack indicators. Collaborate with Threat Intelligence teams to track adversary tactics, techniques, andprocedures (TTPs). Develop and execute a Cyber Defense strategy, aligning security operations withbusiness objectives. Manage, mentor, and grow a team of cybersecurity professionals across SOC andCyber Defense functions. Partner with IT, Risk, Legal, and Compliance teams to ensure alignment with securityframeworks and regulations. Present key cyber risk metrics, threat trends, and program updates to executiveleadership.
Qualifications & Experience 15+ years of overall experience including 5+ years leading cybersecurity teams inSOC and/or Cyber Defense Strong leadership and crisis management skills with experience handling majorsecurity incidents and executive-level communications. Deep expertise in MITRE ATT&CK, threat intelligence frameworks, adversaryemulation, and digital forensics. Proficiency working with cloud service providers such as AWS, Azure, GCP and mustbe able to demonstrate ability to effectively conduct IR on incidents within thesecloud environments Proficiency in SIEM, SOAR, EDR/XDR Experience implementing cyber defense strategies in large-scale enterpriseenvironments. Familiarity with regulatory requirements and compliance frameworks (NIST, CIS, ISO27001, GDPR, etc.). Strong knowledge of offensive security techniques and how to defend against them.
Preferred Certifications CISSP, CISM, GIAC (GCTI, GCIH, GCFA, GNFA, GDAT), CCSP, or equivalent. AWS/Azure/GCP Security certifications are a plus
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
1
0
Categories:
Architecture Jobs
Leadership Jobs
Tags: AWS Azure CCSP CISM CISSP Cloud Compliance Cyber defense EDR Forensics GCFA GCIH GCP GCTI GDPR GIAC GNFA Incident response ISO 27001 MITRE ATT&CK Monitoring NIST Offensive security SIEM SOAR SOC Strategy Threat intelligence TTPs XDR
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSystems Engineer jobsInformation Security Manager jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsIT Security Analyst jobsCyber Security Specialist jobsChief Information Security Officer jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsInformation Systems Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsCyber Security Architect jobsSecurity Operations Analyst jobsThreat Intelligence Analyst jobs
Encryption jobsJava jobsBash jobsTS/SCI jobsEDR jobsIDS jobsThreat detection jobsSQL jobsSplunk jobsIPS jobsMalware jobsSDLC jobsTerraform jobsTop Secret jobsFinance jobsForensics jobsSOC 2 jobsRMF jobsDocker jobsIntrusion detection jobsActive Directory jobsCompTIA jobsGIAC jobsOWASP jobsITIL jobs
HIPAA jobsVPN jobsData Analytics jobsIT infrastructure jobsDoDD 8570 jobsOSCP jobsAnsible jobsTCP/IP jobsCRISC jobsSAP jobsUNIX jobsCCSP jobsBanking jobsMITRE ATT&CK jobsSOX jobsSOAR jobsClearance Required jobsSANS jobsJavaScript jobsZero Trust jobsNIST 800-53 jobsMachine Learning jobsEndpoint security jobsSecurity strategy jobsDNS jobs