Senior Engineer - SOC

Main Tasks

Incident Response:

• Lead and coordinate the response to complex security incidents, including detection, analysis, containment, eradication, and recovery.
• Conduct forensic analysis and investigation of security breaches to determine the root cause and impact.
• Develop and maintain incident response playbooks and procedures to improve the efficiency and effectiveness of the response process.

Threat Intelligence:

• Monitor threat intelligence feeds and analyze relevant data to identify potential threats to the organization.
• Stay updated on the latest cybersecurity trends, threats, and technologies to enhance the organization’s security posture.
• Integrate threat intelligence into incident response and vulnerability management processes.
• Manage the CSIRT team, providing direction, mentorship, and support.
• Ensure 24x7 coverage for incident response operations.
• Oversee the identification, investigation, and resolution of security incidents.
• Coordinate incident response efforts with internal and external stakeholders
• Provide technical guidance to the team during complex security incidents.
• Stay up-to-date with the latest cyber threats, vulnerabilities, and industry trends.
• Prepare and deliver regular reports on incident response activities and outcomes to senior management.
• In-depth knowledge of cyber security principles, incident response methodologies, and threat landscape.
• Experience with security monitoring tools, SIEM.

Skills

Experience

• B.E / B.Tech from reputed University or Institute
• Minimum of 7 years of progressive experience in cyber security with atleast 2 years handling vulnerability management role within CSIRT.
• Relevant certifications such as CISSP, CISM, GIAC or similar.
• Experience in Sentinel /Use Case Creation/Fine Tuning or Threat Hunting 
• Fluency in technical English (written and spoken)