Cyber Security SOC Manager at HCL

Key Responsibilities:
• SOC Leadership and Management:
o Manage the SOC team, including scheduling, training, mentoring, and performance evaluation.
o Define and implement SOC processes, procedures, and playbooks to ensure efficient security operations and incident response.
o Maintain a shift schedule to provide 24/7/365 coverage, ensuring optimal staffing levels for the SOC.

• Security Monitoring and Incident Response:
o Oversee the monitoring and analysis of security events and alerts from various sources, such as SIEM, IDS/IPS, endpoint protection, and cloud platforms.
o Coordinate with internal and external stakeholders to contain and remediate incidents effectively.
o Conduct post-incident analysis to identify root causes and drive improvements in incident response processes.

• SOC Strategy and Development:
o Develop and implement SOC performance metrics and reporting mechanisms.
o Continuously evaluate the effectiveness of SOC operations and recommend improvements in technology, processes, and staffing.
o Stay current with emerging security threats, attack techniques, and industry best practices to ensure the SOC remains effective.

• Team Collaboration and Communication:
o Communicate SOC activities and incident response progress to senior management and stakeholders.
o Collaborate with other cybersecurity teams, such as CSIRT, Threat Hunt, Threat Intelligence, and Vulnerability Management, to enhance overall security posture.