Lead and manage Level 3 escalations within the Security Operations Center (SOC)
Perform advanced threat hunting, malware analysis and incident response
Conduct and manage vulnerability assessments, VAPT and risk mitigation plans
Drive continuous improvement in EDR/ XDR, SIEM, DLP, network and endpoint security posture
Fine-tune, optimize and maintain all deployed security tools and platforms
Actively monitor and respond to zero-day vulnerabilities, high-risk threats and outages
Collaborate with IT, DevOps and business teams to identify and remediate security risks
Evaluate and test new security technologies; lead PoCs and demonstrations for internal and external stakeholders
Work with customers for tool demo, POC setup and post-sales support engagements
Ensure compliance with industry frameworks including MITRE ATT&CK, NIST CSF, SOC2 and ISO27001:2022
Conduct security audits, prepare documentation, reports and evidence for regulatory requirements
Create and maintain detailed documentation of security processes, procedures and tool configurations
Recommend improvements to enhance security posture and ensure policy adherence across the organization
Monitor and analyze network traffic, logs and security alerts for suspicious activities
Respond to security incidents by investigating, containing and remediating issues
Collaborate with IT teams to implement corrective actions following security incidents
Ensure that vulnerabilities are properly prioritized and remediated in a timely manner
Conduct security risk assessments to identify and address potential threats to the organization’s information assets
Design, implement and maintain security infrastructure, tools and processes
Enforce best practices for secure software development, secure network architecture and data protection
Work with cross-functional teams to ensure security is integrated into all stages of the development lifecycle
Conduct employee training and awareness programs related to information security
Keep employees updated on current phishing scams, social engineering tactics and other security threats
Create and maintain all documentation for security policies, procedures and incident reports
Report on security incidents, trends and metrics to leadership
