SOC Engineer-L3

Job Description

About Globals :

Globals has drastically grown from a small home office to a globally recognized enterprise offering world-class quality solutions on Cybersecurity, Cyberwarfare, ERP Systems, AI, and Enterprise Application Development for various industries including Defence, Education, Government, Financial Services and Transport Industries. Globals has enabled its customers to be game-changers in their industry through its disruptive and innovative solutions.

Globals is certified as a "Great Place to Work" organization for its laudable work culture that helps its team members manage work-life, have dedicated hours to upskill and reskill themselves, and most important to ensure that the projects that they are working on are always unique, challenging their status quo every time. Our unique work culture has made us one of the world’s fastest-growing technology companies as recognized and featured by The Economist.

Our excellence in technical stewardship and service-offering expertise has facilitated our clients ranging from individual entrepreneurs to Fortune Global 500 – to explore new business opportunities, reduce their operational costs significantly and boost their revenues. Today, Globals enjoys a strong position in the industry as a high-performing leader through its technology innovation and remarkable domain expertise. Globals is a CMMI Level 3 certified company.

Requirements

About the Role :

The SOC Lead Engineer works within the Security Operations Centre (SOC) to architect, implement, and maintain security solutions, while also monitoring security alerts, responding to incidents, and ensuring robust threat management. This role collaborates with other Information Security and IT Operational teams to maintain a secure environment, respond to threats, and enhance the organization’s security posture. The SOC Lead Engineer is responsible for leading security technology implementations, optimizing security monitoring systems, and managing incident response activities.This position will be responsible for performing security event analysis, incident response, and other related activities as part of a global 24 / 7 / 365 organization.

Responsibilities :

• E pertise in implementing, configuring, and maintaining SOC solutions, including SIEM, HIPS / NIPS, Network Monitoring tools, and other advanced security technologies.
• Expertise in Incident Management and Response
• Strong and In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, Threat Hunting, Threat Intelligence, Advanced Threat Detection and Analysis, Forensic analysis, Network security, endpoint security, Cloud security risk management, incident management, etc.
• Strong hands-on experience in security device management, security monitoring setup, and integration of security tools.
• Develop and refine incident response playbooks, integrating them with SOC processes and ensuring they reflect the latest threat intelligence.
• Lead the implementation and optimization of threat detection systems, including UBEA, AV, Web Security, and cloud security monitoring.
• Develop automated workflows and integrations to streamline SOC processes and improve incident response times.
• Collaborate effectively with internal SOC teams and external stakeholders to enhance security measures.
• Present regular metrics and reports on daily incidents as well as
• emerging security issues.
• Proficiency in developing and using incident response playbooks.
• Ability to coordinate and lead incident response efforts during security incidents.
• Strong written and verbal communication skills for creating incident reports and communicating effectively with both technical and non-technical stakeholders.
• Ability to collaborate with different teams within the SOC and with external stakeholders.
• Capability to lead and guide junior analysts during incident response and daily operations.
• Willingness to mentor and share knowledge with less experienced team members.
• Proactive attitude toward staying updated on the latest cybersecurity threats, vulnerabilities, and industry best practices.
• Understand legal and regulatory requirements related to data protection and cybersecurity.
• Strong analytical and problem-solving skills to identify and address complex security incidents.
• Knowledge of security devices and their management.
• Experience in setting up SOC processes.
• Knowledge about various tools like – SIEM, SSL, Packet Analysis, HIPS / NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset, Web Security, AV, UBEA, Advanced SOC

Benefits

Requirements

About the Role : The SOC Lead Engineer works within the Security Operations Centre (SOC) to architect, implement, and maintain security solutions, while also monitoring security alerts, responding to incidents, and ensuring robust threat management. This role collaborates with other Information Security and IT Operational teams to maintain a secure environment, respond to threats, and enhance the organization’s security posture. The SOC Lead Engineer is responsible for leading security technology implementations, optimizing security monitoring systems, and managing incident response activities.This position will be responsible for performing security event analysis, incident response, and other related activities as part of a global 24 / 7 / 365 organization. Responsibilities : E pertise in implementing, configuring, and maintaining SOC solutions, including SIEM, HIPS / NIPS, Network Monitoring tools, and other advanced security technologies. Expertise in Incident Management and Response Strong and In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, Threat Hunting, Threat Intelligence, Advanced Threat Detection and Analysis, Forensic analysis, Network security, endpoint security, Cloud security risk management, incident management, etc. Strong hands-on experience in security device management, security monitoring setup, and integration of security tools. Develop and refine incident response playbooks, integrating them with SOC processes and ensuring they reflect the latest threat intelligence. Lead the implementation and optimization of threat detection systems, including UBEA, AV, Web Security, and cloud security monitoring. Develop automated workflows and integrations to streamline SOC processes and improve incident response times. Collaborate effectively with internal SOC teams and external stakeholders to enhance security measures. Present regular metrics and reports on daily incidents as well as emerging security issues. Proficiency in developing and using incident response playbooks. Ability to coordinate and lead incident response efforts during security incidents. Strong written and verbal communication skills for creating incident reports and communicating effectively with both technical and non-technical stakeholders. Ability to collaborate with different teams within the SOC and with external stakeholders. Capability to lead and guide junior analysts during incident response and daily operations. Willingness to mentor and share knowledge with less experienced team members. Proactive attitude toward staying updated on the latest cybersecurity threats, vulnerabilities, and industry best practices. Understand legal and regulatory requirements related to data protection and cybersecurity. Strong analytical and problem-solving skills to identify and address complex security incidents. Knowledge of security devices and their management. Experience in setting up SOC processes. Knowledge about various tools like – SIEM, SSL, Packet Analysis, HIPS / NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset, Web Security, AV, UBEA, Advanced SOC