Cybersecurity Incident Response Lead

Role : SOC Lead

Location : Mumbai (Candidates only from Mumbai location)

Type : Fulltime

Interview date : 15th November 2025(Virtual Interview)

Experience : 8+ Years must

Roles and Responsibilities :

1.Must have hand on experience on DNIF, Qradar, Sentinel

2. Design, build, test, deploy SIEM and Security Architectures

3. Serve as a deeply skilled and knowledgeable resource within the Sentinel SIEM technology area

4. Participate in project teams providing consultation on information security designs

5. Perform security incident analysis and recommend remediation steps

6. Participate on automation of the incidents prioritization and false positives identification 7. Serve as deeply skilled and knowledgeable resource within the SOAR technology area

8. Participate on interconnecting the Sentinel SIEM tool with sources of security incidents – e.G. logs from servers, network and security devices, Vulnerability Management system, Antivirus system, etc.

9. Analysis of security events and containment for all security incident events to safe guard Customer infra infra.

10. Installation, configuration and version upgrades for SIEM device.

11. Hands-on experience in Integration with multiple tools like Fileserver,NAC,WAF,AD,EDR etc..

12. Applying signature / IOC on security devices.

13. Providing RCA for the major incident occurred in customer environment

14. Understanding of Incident response plan.

15. Have understanding of Cyber skill methodology.

16. Good handon experience on threat hunthing(Active and Passive)

17. Able to create customer parser for Siem.

18. Have good understanding of Unix / Linux platform

19. SOC KPI on Monthly bases & SOC Reporting metrics