At Sun Pharma, we commit to helping you “Create your own sunshine”— by fostering an environment where you grow at every step, take charge of your journey and thrive in a supportive community.
Are You Ready to Create Your Own Sunshine?
As you enter the Sun Pharma world, you’ll find yourself becoming ‘Better every day’ through continuous progress. Exhibit self-drive as you ‘Take charge’ and lead with confidence. Additionally, demonstrate a collaborative spirit, knowing that we ‘Thrive together’ and support each other’s journeys.”
Areas of Responsibility:
The SOC Manager is responsible for leading the Sun Pharma's Security Operations Center, ensuring continuous monitoring, detection, investigation, response, and recovery from cybersecurity threats. The role manages SOC analysts, incident responders, SIEM operations, threat intelligence, security monitoring technologies, and continuous improvement of security operations capabilities. He will work closely with IT, Infrastructure, Cloud, Compliance, Risk Management, and Business teams to protect critical business assets and maintain cyber resilience.
SOC Operations Management
- Lead and manage 24x7 Security Operations Center activities.
- Develop SOC strategy, roadmap, and operational maturity plans.
- Manage Tier 1, Tier 2, and Tier 3 security analysts.
- Ensure effective monitoring of security events across on-premises, cloud, and SaaS environments.
- Establish SOC processes aligned with NIST, MITRE ATT&CK, and industry best practices.
- Drive continuous improvement of detection and response capabilities.
Security Monitoring & Detection
- Oversee SIEM platform administration and optimization.
- Ensure security use cases are developed, tested, and maintained.
- Reduce false positives and improve alert fidelity.
- Monitor security controls including:
- EDR/XDR
- Email Security
- Network Security
- Cloud Security
- Identity Security
- Data Security
Incident Response
- Lead cyber incident investigations and response activities.
- Coordinate containment, eradication, and recovery efforts.
- Manage ransomware, malware, phishing, insider threat, and advanced persistent threat investigations.
- Conduct post-incident reviews and root cause analyses.
- Maintain Incident Response Plans and Playbooks.
Threat Intelligence & Threat Hunting
- Integrate threat intelligence feeds into SOC operations.
- Lead proactive threat hunting exercises.
- Track emerging cyber threats and vulnerabilities.
- Map detections to MITRE ATT&CK framework.
Security Engineering & Automation
- Collaborate with security engineering teams to enhance security monitoring.
- Drive SOAR implementation and automation initiatives.
- Develop automated response workflows.
- Improve Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
Compliance & Governance
- Support compliance requirements including:
- ISO 27001
- NIST CSF
- HIPAA
- GDPR
- DPDP Act
- 21 CFR Part 11 (where applicable)
- Ensure audit readiness and evidence management.
- Develop SOC metrics and executive dashboards.
Stakeholder Management
- Present SOC performance metrics to executive leadership.
- Support board-level cyber risk reporting.
- Coordinate with external MSSPs, incident response partners, and law enforcement when required.
- Act as the primary escalation point for critical cyber incidents.