This job offer is not available in your country.

SOAR Specialist

METRO LOGISTICSpune, India

4 hours ago

Job description

Company Description

Metro Global Solution Center (MGSC) is internal solution partner for METRO, a €31 Billion international wholesaler with operations in more than 30 countries. The store network comprises a total of 623 stores in 21 countries, of which 522 offer out-of-store delivery (OOS), and 94 dedicated depots. In 12 countries, METRO runs only the delivery business by its delivery companies (Food Service Distribution, FSD).

HoReCa and Traders are core customer groups of METRO. The HoReCa section includes hotels, restaurants, catering companies as well as bars, cafés and canteen operators. The Traders section includes small grocery stores and kiosks. The majority of all customer groups are small and medium-sized enterprises as well as sole traders. METRO helps them manage their business challenges more effectively.

MGSC, location wise is present in Pune (India), Düsseldorf (Germany) and Szczecin (Poland). We provide HR, Finance, IT & Business operations support to 31 countries, speak 24+ languages and process over 18,000 transactions a day. We are setting tomorrow’s standards for customer focus, digital solutions, and sustainable business models. For over 10 years, we have been providing services and solutions from our two locations in Pune and Szczecin. This has allowed us to gain extensive experience in how we can best serve our internal customers with high quality and passion. We believe that we can add value, drive efficiency, and satisfy our customers.

Job Description

Profile Summary :

As a Level 3 SOAR Specialist , as part of the Cyber Defense Operations Center (CDOC) you will lead advanced security operations with a focus on SIEM and SOAR technologies, driving detection engineering, automated response, and complex incident handling. You’ll be responsible for optimizing detection rules, developing playbooks, and managing high-severity incidents from triage to resolution. In parallel, you’ll mentor Level 1 and 2 analysts, preparing to lead your own team in the future. While EDR remains part of the security stack, your primary emphasis is on engineering activities around SIEM and SOAR to enhance operational efficiency and threat mitigation. This role requires deep technical expertise, leadership potential, and a proactive approach to evolving threats.

Job Description : -

Manage and maintain NG SIEM solutions like Google Chronicle, Crowdstrike and support in leveraging SOAR capabilities by designing and implementing SOAR playbooks, including necessary integration and automation.

Support on boarding and maintenance of a wide variety of data sources to include various OS, appliance, and application logs. Create Custom queries, custom dashboards, and visualizations.

Develop and fine tune content for the different tools including but not limited to SIEM Use Cases, SOAR playbooks, Threat intelligence watchlist and rules.

Select and recommend additional security solutions or enhance existing security solutions to improve overall METRO detection and response capabilities as per the METRO cyber security strategy.

Develop appropriate use cases / playbooks / models / reports and alerts & develop custom parsers / connectors for integrating logs, wherever necessary or required.

Perform analysis on the reported incidents, determine the root cause and recommend the appropriate solution.

Use and apply learnings from incident and provide recommendation for standardizing the NG SIEM Solution.

Reduction of False Positives by fine tuning existing correlation rules / configuration / playbooks / models

Automation with continuous improvements, Reduction in MTTR, MTTD and Improvement of overall posture of NG SIEM deployment to achieve best ROI.

Ensure the confidentiality, integrity and availability of the data residing on or transmitted to / from / through SOC controls.

Generate reports and documentation related to platform performance and continuous improvement recommendations for management and stakeholders.

Ensure the SIEM integration is intact among the SOC solutions and with other assets

Design, create and customize the dashboards / reports as per the business needs.

Create and manage NG SIEM knowledge objects to include apps, dashboards, saved and scheduled searches and alerts.

Qualifications

Exp and Qualification :

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master's degree or relevant certifications (, CISSP, CISM, SANS / GIAC, ECIH, GCIH, CEH, DFIR) may be preferred.

7-11 years of total experience in SOC in a large multi-national organization or in a known MSSP. In addition to minimum 8 years of SOC Engineering experience, candidate should posses at least 2 years of experience on Incident Response capabilities.

Technical & Soft Skills :

In-depth knowledge and hands-on experience with SOC technologies and tools such as Google Chronicle SIEM, CrowdStrike EDR / EPP, Vectra NDR, Recorded Future TI, etc.

Strong knowledge and skills in scripting, and development of automation and orchestration code.

Strong hands-on experience with various operating systems, networking protocols, and application architectures.

In-depth Knowledge of industry standards and frameworks such as MITRE ATT&CK, Magma Framework, NIST CSF, ISO 27001, etc.

Proficiency in scripting languages (, Python, PowerShell) for automation and analysis.

Familiarity security operations center (SOC) operations, incident response, threat detection, and vulnerability management.

Analytical and problem-solving skills to identify and troubleshoot SOC platform technical issues.

Ability to adapt to changing security threats and evolving business requirements.

Strong organizational and time management skills with the ability to coordinate and prioritize multiple tasks simultaneously.

Ability to work under pressure, especially during critical security incidents.

Ability to conduct independent research and analysis, identifying issues, formulating options, and making conclusions and recommendations.

Skilled in developing professional documentation and detailed reporting (including PowerPoint presentations), including policies, standards, processes and procedures

Very high attention to detail, with strong skills in managing / presenting data and information.

Demonstrable conceptual, analytical and innovative problem-solving and evaluative skills.

Excellent communication and interpersonal skills to effectively collaborate with stakeholders, and internal teams.

Create a job alert for this search

Specialist • pune, India

Related jobs

Promoted

Sr. Analyst - Secure Configuration

Northern TrustPune, Maharashtra, India

Northern Trust has commitment to ensure that all the technologies are secure, reliable and resilient.As part of that Northern Trust has a Vulnerability Management function to identify vulnerabiliti...Show moreLast updated: 8 days ago

Promoted
New!

SOC Analyst

Gamma Technologies LLCpune, India

As a SOC Analyst, you will be responsible for driving the incident response lifecycle, monitoring and analyzing security events, and identifying and responding to threats.You will use your deep kno...Show moreLast updated: 4 hours ago

Promoted
New!

SOC Specialist

METRO LOGISTICSpune, India

Promoted

SOC Specialist

PeoplefyPune, Maharashtra, India

I am on lookout for SOC Specialist for leading.Should have experience with Security and Threat monitoring.Should have good experience with concepts of SIEM. Should have strong experience in Threat a...Show moreLast updated: 4 days ago

Promoted
New!

Sr Solution Architect

Screen Magic Mobile Media Pvt Ltdpune, India

As a Solutions Architect, you will be the technical lead in the customer-facing designing solutions that include architecture, drive integration designs, align technical requirements with Converse'...Show moreLast updated: 4 hours ago

Promoted
New!

Sr SAP Application Analyst - EWM

Cummins Inc.pune, India

Provides comprehensive application functionality, configuration and support expertise for application software solutions. works with business analysts, architects, technical experts and software ve...Show moreLast updated: 4 hours ago

Promoted

SSO Engineer

Persistent Systemspune, maharashtra, in

The SSO Engineer is responsible for onboarding, configuring, and maintaining enterprise applications on Azure Single Sign-On (SSO) to provide secure, seamless, and scalable authentication experienc...Show moreLast updated: 1 day ago

Promoted
New!

SDET Specialist

Global Paymentspune, India

Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services.Our worldw...Show moreLast updated: 4 hours ago

Promoted
New!

Sr Solution Architect (AWS + Snowflake)

ScaleneWorkspune, India

As AWS & Snowflake Practice & Solution Lead, you will be responsible for growth, technical thought leadership and providing advisory and thought leadership on the provision of analytics environment...Show moreLast updated: 4 hours ago

Promoted

Zuora Senior Technical Specialist

TradewebPune, IN

Tradeweb Markets is a world leader in the evolution of electronic trading.A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, i...Show moreLast updated: 17 days ago

Promoted
New!

Sr Analyst - SAP BODS Development

Seagatepune, India

This team is responsible for Business Analytics at Seagate.Responsible for SAP BODS Support and Development projects.Main tasks include the requirements analysis, conception, implementation / develop...Show moreLast updated: 4 hours ago

Promoted
New!

SOAR Specialist

METRO Global Solution Center INpune, India

Cyber Defense Operations Center (CDOC).SIEM and SOAR technologies, driving detection engineering, automated response, and complex incident handling. You’ll be responsible for optimizing detection ru...Show moreLast updated: 4 hours ago

Promoted
New!

Sr. Platform Engineer

Cummins Inc.pune, India

Responsible for defining and communicating a shared technical and architectural vision for Product Teams to help ensure the system or Solution under development is fit for its intended purpose.Embr...Show moreLast updated: 4 hours ago

Promoted
New!

SDET

Wissenpune, India

Wissen Technology is Hiring for SDET.At Wissen Technology, we deliver niche, custom-built products that solve complex business challenges across industries worldwide. Founded in 2015, our core philo...Show moreLast updated: 4 hours ago

Promoted

Lead SOC Analyst

FLENTAS TECHNOLOGIES PRIVATE LIMITEDPune

Lead- SOC Analyst About Flentas Technologies : Flentas helps enterprises...Show moreLast updated: 30+ days ago

Promoted
New!

Sr Program Specialist

Honeywellpune, India

Key focal persons for the respective projects assigned to them & responsible for effectively managing the projects in all aspects till handing over of the project to customer and to internal stake ...Show moreLast updated: 4 hours ago

Promoted
New!

Sr. Lead IAM (Identity and Access Management) Governance

Northern Trust Corporationpune, India

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative f...Show moreLast updated: 4 hours ago

Promoted
New!

Sr Analyst, Consulting-KloudGin

Black & Veatchpune, India

As an KloudGin Implementation Consultant, you will be responsible for executing configurations and customizations based on business requirements under the direction of the Solution Architect.This r...Show moreLast updated: 4 hours ago