1. To manage a team of security analysts and engineers, providing guidance, support, and technical mentorship. Responsible for organizing workloads, delegating tasks, and ensuring the team operates efficiently.
2. Handle of incident response efforts. To lead the investigation and mitigation of security incidents. To coordinate with other teams, to gather evidence, and implement remediation measures. To participate in post-incident reviews and lessons learned exercises to identify root causes and implement preventive measures.
3. Ensure the continuous monitoring of network traffic, system logs, and security alerts to detect potential threats and vulnerabilities. To ensure the monitoring tools and technologies are properly configured and optimized to identify suspicious activities.
4. Responsible for managing and maintaining security tools and technologies used within the SOC, such as SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems (IDS/IPS), endpoint security solutions, and threat intelligence platforms.
5. As the Subject Matter Expert (SME) on Cyber Security, render guidance on all Security Incidents and Threats.
6. Proactively mitigate cyber security risks and strengthen the attack detection and response processes.
7. To facilitate training sessions and workshops to enhance the skills and knowledge of SOC team.
8. To foster collaboration with other IT and security teams, such as network operations, incident response, and vulnerability management.
9. To contribute to risk assessments and help prioritize security initiatives based on potential impact and likelihood of threats. To assist in developing strategies to mitigate risks and improve overall security posture of organization.
10. Automation for various activities through scripts or JIRA
11. Cloud Security and AI Security knowledge 

Qualifications :

1. 6+ years of experience, including 4+ years of relative experience (Related experience includes SOC lead, Incident response, etc.).
2. Prior experience in managing Security Operations Centers/Managed Security services.
3. Expertise in Cyber Security attacks, tools & techniques, and experience with Advanced Threat management.
4. Experience in tuning and/or configuring SIEM, Threat intel tools, and Endpoint Etc..
5. Knowledge of various operating system Flavors, Applications, Databases to address security threats against the same.
6. Professional/Technical Certifications (Security+, CCSE,CISM, MCSE, CISSP, etc.) desirable