Responsible for IT SOC Operations, Designing \& Adapting right fit Industry best Security practices, enhancing detection, and response capability for the emerging threat landscape.
*A Day in the life**
--------------------
A day in life will be around: Responsible for IT SOC Operations; Designing \& Adapting the right\-fit Industry\-best Security practices; enhancing detection and response capabilities for the emerging threat landscape.
Lead and manage all aspects of SOC operations, ensuring effective security monitoring and incident response.
Establish and enforce governance over IT/OT security monitoring activities across the organization.
Facilitate seamless collaboration and communication between SOC analysts/service providers and operation engineers.
Contribute to the development and execution of the organization's cybersecurity SOC strategy.
Direct and orchestrate the company's response to significant security threats, thereby safeguarding the organization from cyber incidents.
Validate new project deliveries to identify potential cyber threats and enhance detection capabilities.
Proactively monitor the organization's networks for security breaches and conduct thorough investigations into any reported violations.
Accurately identify and categorize false and true positive security incidents/events.
Demonstrate a comprehensive understanding of various security solutions and technologies, including SIEMs, Patch Management, Network Visibility, EDR, CASB, Packet Tracers, Network Traffic Analysers, and DLPs.
Oversee daily DLP operations, including incident analysis and forensic assessments.
Provide essential investigative support from a DLP perspective.
Drive the enhancement of DLP tool capabilities and expand its coverage throughout the organization.
Recommend pertinent IT security enhancements to IT Management.
Provide support for IT security audits and assist in the development and implementation of remediation plans as required.
Enable automated responses to recurring incidents/events through SOAR adoption.
Identify and implement optimal SIEM use cases, Brand Monitoring use cases, and Threat Hunting use cases.
Ensure timely tracking and closure of all SIEM, Threat Hunting, and Brand Monitoring tickets.
Oversee both horizontal and vertical deployment strategies for the SOC.
Identify current security threats and anticipate future attack vectors.
Collaborate with project teams and third\-party vendors to ensure that all new hardware or software installations adhere to enhanced SOC security standards.
Identify, document, and maintain the IT \& OT security risk register, reporting findings directly to the CISO.
Orchestrate the company's response to major security threats.
Oversee the review and update of SOC Standard Operating Procedures (SOPs).
Lead collaborative efforts with teams and analysts to ensure timely acknowledgment of all alerts, incidents, and events.
Represent the organization's security posture during internal and external audits.
Adopt best practices for monitoring and correlation\-based actions.
Govern weekly, monthly, quarterly, and annual report submissions.
Drive security awareness \& conducts regular training on security policy and standard requirements through training, communication, and workshops.
Responsible for arranging trainings for analysts
Coordinate with Partner team for managed SOC\-SIEM day to day operations
Coordinate with managed partner for implementation of security control