Senior Manager – Security Operations Center (SOC)

We are hiring for Manager / Senior Manager Security Operations Center (SOC) at Gurgaon

About the Role:

We are seeking a proactive and experienced Manager / Senior Manager to lead our Security Operations Center (SOC) and Incident Response (IR) functions. This role involves designing and implementing a comprehensive SOC and IR strategy in partnership with Managed Security Services (MSS) providers, while also developing internal SOC capabilities to effectively detect, monitor, and respond to security threats.

Core Responsibilities:

• Design and implement a managed SOC and Incident Response strategy, architecture, and program in collaboration with MSS providers to ensure comprehensive threat detection, monitoring, and response.
• Provide oversight and governance of MSS/SOC partners to ensure service quality, SLA compliance, and alignment with organizational security goals.
• Evaluate, recommend, and implement security technologies and tools essential for SOC operations and effective incident response.
• Define and develop threat detection use cases; oversee red team exercises and coordinate attack simulations to evaluate SOC readiness and response effectiveness.
• Ensure logging is enabled and correctly configured across all critical infrastructure, applications, and security devices in coordination with IT and cloud teams.
• Validate ingestion and monitoring of all relevant security logs into the SIEM platform to maintain effective threat detection.
• Manage, mentor, and develop a lean internal SOC team, collaborating closely with the MSS/SOC partner to strengthen in-house oversight and ensure operational resilience.
• Optimize detection coverage, incident triage processes, and SLA adherence to ensure timely and accurate incident resolution.
• Lead the design and tuning of alert rules, maintain automated playbooks, and implement advanced threat monitoring techniques to improve SOC efficiency.
• Be responsible for coordinating threat intelligence sharing and response activities across internal and MSS partner Incident Response teams.
• Ensure compliance with internal incident response procedures and relevant regulatory requirements.
• Drive continuous improvement of SOC capabilities through KPIs, regular threat drills, and post-incident reviews.
• Develop and maintain SOC performance dashboards and prepare executive-level reports to communicate operational effectiveness and security posture to senior leadership.
• Perform additional Information Security projects and tasks as assigned by senior management to support Mobileum’s evolving security landscape.

Stakeholder & Collaboration Management:

• Collaborate with IT, Cloud Operations, Engineering, Legal, and Risk Management teams to align SOC operations with broader organizational risk management initiatives.
• Serve as the primary liaison with MSS providers, ensuring clear communication, contractual compliance, and coordinated incident response.
• Work alongside Security Architecture, Governance, and Compliance teams to integrate SOC activities within the organization’s overall security framework.
• Ability to translate complex technical details into clear, business-understandable language for effective communication with stakeholders.

People Management & Leadership:

• Lead and mentor a lean internal SOC and Incident Response team, promoting a culture of proactive monitoring and continuous improvement.
• Encourage skill development and cross-functional collaboration to enhance SOC and IR capabilities.
• Balance leveraging MSS partnerships with developing strong in-house security operations expertise.

Work Style & Leadership Attributes:

• Hands-on leader with strong technical knowledge of SOC operations and incident response methodologies.
• Proactive, self-driven, and solution-oriented with the ability to lead complex security programs under pressure.
• Excellent communicator capable of engaging technical teams, business stakeholders, and senior leadership.
• Ability to foster a security-aware culture and motivate teams to maintain high vigilance and operational excellence.

Qualifications & Certifications:

Preferred Certifications:

• GIAC Security Operations Certified (GSOC)/GIAC Certified Incident Handler (GCIH)
• Certified SOC Analyst (CSA) – EC-Council
• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• PMP or equivalent project management certification (optional)

Skills & Experience:

• 7–12 years of experience managing SOC and Incident Response teams or functions.
• Expertise with SIEM platforms (Splunk, IBM QRadar, ArcSight, Azure Sentinel, or equivalent) and security monitoring tools.
• In-depth knowledge of threat detection, incident triage, alert tuning, and automation of response processes.
• Experience managing Managed Security Service Providers (MSSPs) and third-party vendor relationships.
• Strong understanding of logging best practices, log management, and cloud security monitoring.
• Proven ability to analyse complex security incidents and lead root cause analysis and remediation efforts.
• Excellent leadership, stakeholder management, and communication skills.

Work Experience: 7–12 years

Educational Background:

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Technology, or related discipline preferred.

Location: Gurgaon