FIND_THE_RIGHTJOB.
Associate Manager - Cybersecurity (TSM)
India
Job Description
:Skills Required- Microsoft XDR technologies, Microsoft Sentinel, Email Security platforms (Microsoft Defender for Office 365, Mimecast), and Data Loss Prevention (DLP) with Microsoft Information Protection (MIP)
Position Overview
We are seeking an experienced SOC Manager to lead and mature our global Security Operations Center (SOC). This role will oversee threat detection, incident response, and vulnerability reduction using Microsoft XDR technologies, Microsoft Sentinel, Email Security platforms (Microsoft Defender for Office 365, Mimecast), and Data Loss Prevention (DLP) with Microsoft Information Protection (MIP). The ideal candidate will combine strong technical expertise with proven leadership in managing SOC teams, processes, and technologies.
________________________________________
Key Responsibilities
SOC Leadership & Operations
We are seeking an experienced SOC Manager to lead and mature our global Security Operations Center (SOC). This role will oversee threat detection, incident response, and vulnerability reduction using Microsoft XDR technologies, Microsoft Sentinel, Email Security platforms (Microsoft Defender for Office 365, Mimecast), and Data Loss Prevention (DLP) with Microsoft Information Protection (MIP). The ideal candidate will combine strong technical expertise with proven leadership in managing SOC teams, processes, and technologies.
________________________________________
Key Responsibilities
SOC Leadership & Operations
- Lead a team of SOC analysts, incident responders, and threat hunters to deliver 24x7 monitoring and response.
- Define SOC strategy, KPIs, workflows, and escalation procedures aligned to business risk.
- Drive incident response lifecycle management – detection, triage, containment, eradication, and recovery.
- Oversee tuning, rule creation, and continuous improvement of Microsoft Sentinel analytics and XDR detections.
- Conduct post-incident reviews, lessons learned, and develop playbooks/runbooks to improve resilience.
- Manage Microsoft Sentinel SIEM platform – analytics rules, hunting queries, UEBA, SOAR playbooks.
- Leverage Microsoft XDR stack (Defender for Endpoint, Identity, Cloud, Office 365, and Cloud Apps) to detect and respond to multi-vector attacks.
- Oversee integration of telemetry sources into Sentinel and XDR for end-to-end coverage.
- Ensure correlation and enrichment across endpoint, identity, email, and cloud signals.
- Oversee email threat protection policies in Microsoft Defender for Office 365 and Mimecast.
- Manage detection, analysis, and containment of phishing, BEC, spoofing, and malware campaigns.
- Ensure alignment of email security workflows with SOC detection and response processes.
- Guide team on triaging email alerts, end-user reporting, and automated SOAR response actions.
Data Loss Prevention (DLP) & Microsoft Information Protection (MIP)
Required Skills & Experience
Preferred Qualifications
- Oversee design, deployment, and monitoring of DLP policies across email, endpoints, and cloud apps.
- Ensure integration of MIP sensitivity labels with DLP enforcement for protecting sensitive information.
- Collaborate with compliance/legal teams to align DLP with regulatory requirements (GDPR, PCI-DSS, HIPAA, etc.).
- Manage incident response for DLP violations, insider threats, and sensitive data misuse.
- Ensure SOC operations align with industry frameworks (NIST CSF, ISO 27001, MITRE ATT&CK).
- Provide executive dashboards and risk reports on SOC performance, threats, and incidents.
- Support internal and external audits, regulatory reviews, and compliance certifications.
- Drive security awareness and incident readiness across IT and business units.
Required Skills & Experience
- 10–15 years in cybersecurity with at least 5 years in a SOC leadership role.
- Hands-on expertise with Microsoft Sentinel, Microsoft XDR suite, Mimecast, MDO, DLP, and MIP.
- Strong knowledge of SIEM, SOAR, EDR/XDR, email threat protection, insider risk, and cloud security.
- Proven experience in incident response, threat hunting, and SOC operations management.
- Familiarity with compliance and regulatory frameworks (ISO, GDPR, PCI, HIPAA).
- Excellent leadership, stakeholder management, and cross-team collaboration skills.
Preferred Qualifications
- Certifications: CISSP, CISM, Microsoft SC-200, SC-100, SC-400, GIAC (GCIA, GCIH, GCED).
- Experience building or maturing SOC services (in-house or MSSP).
- Exposure to automation/orchestration tools (SOAR, playbook development).
- Ability to mentor, develop, and retain SOC talent in a high-demand environment.
Location
:India - Bengaluru
Created On
:08-Sep-2025
Similar jobs
No similar jobs found
© 2025 Qureos. All rights reserved.