Role : SOAR Administration Manager
Location : Bangalore, India
Experience : 8-15 Years
Job Type : Full-time
Job Overview :
We are seeking a highly skilled and experienced SOAR Administration Manager to join our team. This is a Subject Matter Expert (SME) role with overall responsibility for SOAR processes within the Security Incident Response domain. The ideal candidate will have 8-15 years of experience in information security, with a strong focus on implementing, optimizing, and managing Security Orchestration, Automation, and Response (SOAR) platforms. You will play a crucial role in supporting the Head of Cyber Defense Center to achieve the organization's Information Security strategy and goals.
Responsibilities :
SOAR Platform Management & Strategy :
- Serve as the Subject Matter Expert (SME) for SOAR processes, ensuring overall effectiveness within the Security Incident Response domain.
- Design, implement, and optimize security workflows within SOAR platforms, creating automated playbooks to ensure proper orchestration between multiple security tools and systems.
- Support the Head of Cyber Defense Center in achieving the organization's Information Security strategy and goals.
Process & Control Assurance :
Confirm the adequacy of process controls against Security Incident Response policies, standards, and applicable regulatory requirements.Ensure alignment with key security standards and regulations such as NIST 800-61, CERT / CC, PCI, ISO 27035, etc.Automation & Integration :
Leverage scripting languages (Python, PowerShell, Bash) to automate repetitive tasks and integrate various security tools and systems.Incident Response Leadership :
Apply strong knowledge of incident response processes and frameworks, coordinating response efforts effectively during security incidents.Utilize analytical skills to analyze complex security data, identify patterns, and make informed decisions to enhance security operations.Project & Program Management :
Manage projects related to SOAR implementations and improvements, including planning, execution, and monitoring.Continuous Improvement :
Drive continuous improvement of SOAR capabilities and security operations efficiency.Required Skills : Experience :
Over 8+ years of rich experience in the information security domain.At least 4-6 years of dedicated experience in Security Incident Response using SOAR solutions.Proven hands-on experience in implementing and operationalizing SOAR tools, preferably on Sentinel or Splunk SOAR, Palo Alto Cortex XSOAR, or IBM Resilient.Preferably worked in the BFSI domain with proven experience in a SOC function.Technical Proficiency :
Deep understanding of security technologies, including SOAR platforms, threat intelligence platforms, SIEM solutions, and other cyber monitoring tools and technologies.Proficiency in scripting languages such as Python, PowerShell, or Bash.Familiarity with advanced SOC monitoring technologies, risk, threat, and security measures.Knowledge across the SOC domains including governance, control frameworks, policies, compliance management, risk management, and incident response.Incident Response & Analysis :
Strong knowledge of incident response processes and frameworks.Ability to analyze complex security data, identify patterns, and make informed decisions.Project Management :
Experience in managing projects, including planning, execution, and monitoring of SOAR implementations and improvements.Knowledge of key security standards and regulations such as NIST 800-61, CERT / CC, PCI, ISO 27035, etc.ref : hirist.tech)