Cyber Security (Soc) - Team LeadSanganan IT Solutions Pvt Ltd. • Bengaluru, Republic Of India, IN

No longer accepting applications

Cyber Security (Soc) - Team Lead

Sanganan IT Solutions Pvt Ltd. • Bengaluru, Republic Of India, IN

30+ days ago

Job description

Job Title : Team Lead - Security Operations Center (SoC)

Location : Noida / Singapore Office

WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME
Short notice period or immediate joiners are preferred.

Job Overview :

As the SOC Team Lead, you will oversee the daily operations and strategic direction of a multi-tiered Security Operations Center comprising Level 1, Level 2, and Level 3 SOC Analysts. You will ensure delivery of high-quality monitoring, detection, response, and threat intelligence services across internal and MSSP customer environments. In this leadership role, you’ll be responsible for analyst performance, escalation handling, service delivery compliance, and technical excellence. You will also lead the coordination of quarterly incident response exercises, customer reporting, and continuous process improvement initiatives.

This position plays a pivotal role in bridging tactical SOC operations and strategic business outcomes, reporting to the SOC Manager or Head of Cybersecurity Services.

Key Responsibilities :

1. Team Leadership & Tiered Analyst Management

Lead and supervise the SOC team across L1 (Monitoring / Triage), L2 (Investigation / Response), and L3 (Threat Hunting / Engineering) functions.

Set clear roles, escalation workflows, and KPIs across tiers;

ensure consistent coverage, shift rotations, and SLA adherence.

Conduct regular performance reviews and targeted skill gap analysis.

Promote collaboration, accountability, and continuous learning across junior and senior analysts.

Foster readiness to handle high-severity security events through coaching and simulated training.

2. SOC Operations Oversight

Act as the final escalation point for critical, complex, or ambiguous incidents that exceed Level 3 thresholds.

Ensure effective triage, investigation, containment, and recovery workflows across all incident types.

Support 24 / 7 monitoring operations, ensuring shift efficiency, proper documentation, and accurate escalation.

Oversee the tuning and effectiveness of detection content, ensuring false positive reduction and high-fidelity alerting.

3. Customer Reporting & MSSP Service Quality

Ensure timely delivery of Weekly Threat Intelligence Digests, Biweekly Alert Tuning Reports, and Monthly / Quarterly MSSP Reports.

Review and validate customer-facing deliverables for accuracy, quality, and insight.

Lead or support monthly service review meetings and quarterly executive briefings with MSSP clients.

Track and report SOC performance against SLA / KPI metrics such as MTTD, MTTR, FPR, and escalation compliance.

4. Incident Response Tabletop & Planning

Lead planning, execution, and reporting of Quarterly Incident Response Tabletop Exercises across MSSP environments.

Collaborate with stakeholders from technical, compliance, and business functions to simulate realistic attack scenarios.

Ensure deliverables include scenario documentation, participant actions, gaps identified, and remediation plans.

5. Process Development & Optimization

Own the development, maintenance, and continuous improvement of SOC playbooks, SOPs, and runbooks across tiers.

Align SOC processes with customer onboarding requirements (log source validation, escalation matrix, SLA definitions, tooling integration).

Drive change control and governance for detection rule updates, log onboarding, and tooling enhancements.

6. Threat Intelligence & Strategic Defense

Collaborate with L3 analysts to ensure threat intelligence is operationalized into detection content and hunt scenarios.

Stay informed on industry trends, APT groups, and emerging TTPs, ensuring the SOC adapts proactively.

Required Skills & Qualifications :

1. Education :

Bachelor’s degree in Information Security, Computer Science, or a related technical field.

Postgraduate education or executive leadership courses are advantageous.

2. Certifications :

Required : Microsoft Certified : Security Operations Analyst Associate.

Preferred :

o CompTIA CySA+, CISSP, or equivalent certifications.

o GIAC (e.G., GCIA, GCIH, GMON)

o CISSP or CISM

o ITIL Foundation or service management certifications

o English Language Proficiency : IELTS (6.5+), TOEIC (800+), TOEFL (90+), or BEC Vantage

3. Technical Skills :

Advanced knowledge of Microsoft Sentinel , KQL, and SOAR workflows.

Deep understanding of incident response, MITRE ATT&CK, threat intelligence, and SOC toolchains (EDR, UEBA, TIPs).

Familiarity with multi-tenant MSSP platforms, SIEM tuning, and SOC metrics reporting.

Knowledge of log source onboarding, change control processes, and secure communication protocols.

4. Leadership & Soft Skills :

Strong leadership, coaching, and delegation skills across junior and senior technical roles.

Proven ability to translate technical findings into business-relevant impact.

Excellent communication and documentation skills for both technical teams and C-level stakeholders.

Organized, resilient, and calm under pressure, especially during major incident escalations and executive briefings.

Experience :

8-10+ years in cybersecurity or SOC operations, including 3-5+ years in a leadership role.

Prior experience managing multi-tier SOC teams or leading detection and response operations in an MSSP is highly preferred.

Create a job alert for this search

Cyber Security Lead • Bengaluru, Republic Of India, IN

Related jobs

Cyber Security Lead

Societe Generale Global Solution Centre • Bengaluru, Karnataka, India

Ability to identify, propose, design and run the operational and security risk Controls.Sound understanding of various cybersecurity controls and their relevance to handle various threat scenarios....Show more

Last updated: 17 days ago • Promoted

Senior Cyber Security Analyst Lead

MUFG • Bengaluru, Karnataka, India

Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show more

Last updated: 19 hours ago • Promoted • New!

Cyber Security Manager

nTech Workforce • Bengaluru, Karnataka, India

Location : Remote (Bengaluru, India).Bachelor or Master degree in computer science with a minimum of 8 years in cyber security domain. Technical background in networking / system administration, securi...Show more

Last updated: 5 days ago • Promoted

Cyber Security Delivery Lead

YASH Technologies • Bengaluru, Karnataka, India

To lead the delivery of cybersecurity programs and projects, ensuring alignment with organizational objectives, compliance standards, and risk management frameworks. The role focuses on driving secu...Show more

Last updated: 20 days ago • Promoted

Senior Manager–Cybersecurity & Cyber Defense Center

Mashreq • Bengaluru, Karnataka, India

To develop, manage, and execute cyber security project across Mashreq to –.Lead and oversee the strategic operations of the Cyber Defense Center (CDC) to ensure effective monitoring, detection, ana...Show more

Last updated: 16 days ago • Promoted

Team Lead

ALTISOURCE BUSINESS SOLUTIONS PRIVATE LIMITED • Bengaluru, IN

Willing to work in night shift.Lead the property inspection operations in a multi-client environment ensuring adherence to service level agreements and quality standards. Track team perfoJob Descrip...Show more

Last updated: 20 days ago • Promoted

Cyber Security Engineer-I (Mandatory 2-4 years experience with Sailpoint and AWS IAM)

FICO • Bengaluru, Karnataka, India

Hybrid mode (Mandatory 3days WFO).The Security Engineer is a highly visible and critical role, collaborating on complex cloud and corporate service edge protection technologies and oversight.With y...Show more

Last updated: 19 days ago • Promoted

Security Engineer - DNS Security (Immediate Joiner)

SHI Solutions India Pvt. Ltd. • Bengaluru, Karnataka, India

Role : Security Engineer – DNS Security (Immediate Joiner).The design, deployment, tuning and operationalization of enterprise-grade DNS security using Cisco Umbrella, Infoblox DDI, and related tool...Show more

Last updated: 22 days ago • Promoted

Cyber Security Specialist

Embitel Technologies • Bengaluru, Karnataka, India

We are seeking a highly skilled and detail-oriented Cyber Security Specialist to protect our organization's digital assets and infrastructure from cyber threats. The ideal candidate will have a stro...Show more

Last updated: 19 days ago • Promoted

Team Lead - Risk Analytics

Rippling • Bangalore, Karnātaka, India, 560102

Rippling gives businesses one place to run HR, IT, and Finance.It brings together all of the workforce systems that are normally scattered across a company, like payroll, expenses, benefits, and co...Show more

Last updated: 2 days ago

Network & Security L3 - CCIE, CCNP, Fortigate, SDWAN

Black Box • Bengaluru, Karnataka, India

Black Box is a trusted IT solutions provider delivering cutting-edge technology solutions and world-class consulting services in Unified Communications, Enterprise Networking, Data Center, Digital ...Show more

Last updated: 30+ days ago • Promoted

Cybersecurity Initiatives Lead

Leading Healthcare Industry • Bengaluru, Republic Of India, IN

Lead Product Security Initiatives : .Champion cybersecurity across the Secure Development Lifecycle (SDLC), ensuring security is embedded from design to deployment. Define Secure Development Standards...Show more

Last updated: 1 day ago • Promoted

Cybersecurity Lead Governance, Risk & Compliance

Scybers • Bangalore, Karnataka, India

As a Cyber Security Lead / Senior Lead you will play a key role in supporting clients with the implementation of cybersecurity strategies frameworks and compliance programs.This role requires solid...Show more

Last updated: 7 hours ago • Promoted • New!

Senior Lead Cyber Security Architect Azure, SDLC

JPMorganChase • Bengaluru, Karnataka, India

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers. As a Senior Lead Cybersecurity Architect at JPMorganChase w...Show more

Last updated: 9 days ago • Promoted

Senior Cyber Security Operation Lead

CrimsonLogic • Bengaluru, Karnataka, India

Working Experience Requirements.Proven experience in managing 24x7 SOC operations.Hands-on experience with SIEM platforms (e. Supervise daily SOC operations, including alert triage, investigation, a...Show more

Last updated: 7 days ago • Promoted

CyberArk implementation Lead

Atos • Bangalore Urban, Karnataka, India

Have a strong knowledge of CyberArk privileged Account Management solutions- CyberArk components like Vault, CPM, PSM, PSMP, PVWA, AAM, PTA. Have worked on CyberArk Application upgrades / releases and...Show more

Last updated: 23 days ago • Promoted

Senior Engineer / Asst. Manager - Cyber Security

TÜV SÜD • Bengaluru, Karnataka, India

Keep up to date with the latest in standards, regulations and technical developments in the cyber security space.Actively co-develop the security programs and details test method according to ITSAR...Show more

Last updated: 17 days ago • Promoted

Cybersecurity Lead(6 months contract)

Sekuro Asia • Bangalore, IN

Our client oversees and operates digital asset-related businesses.Our client aims to transform the financial industry by building a tech-enabled institutional grade ecosystem for issuance, distribu...Show more

Last updated: 8 days ago • Promoted