Role: Lead SOC Engineer
Industry Type: Insurance
Department: IT & Information Security
Employment Type: Full Time, Permanent
Role Category: IT & Information Security - Other
UG: B.Tech / B.E. in Any Specialization
PG: MCA in Any Specialization
Brief Job Description:
As the Lead of Cyber Security Operations Manager, he will serve as the primary guardian of our organization's technical security posture. Operating in a highly regulated environment, he will manage end-to-end security operations by directing a partner-led (managed services) team.
He will ensure ironclad compliance and operational security for daily requirements across end-users, data centers, and cloud environments, while strategically evaluating and deploying the next generation of security technologies. He will act as the bridge between hands-on technical architecture and strategic operational leadership
Technologies:
Zscaler, Data Loss Prevention (DLP), EDR, Email Security, Attack Simulation (BAS), Network Security(Palo alto, Fortigate)
Key Responsibilities
Operations & Partner Management
- Direct Partner-Led Teams: Oversee and manage a managed security services partner (MSSP) to ensure day-to-day security operations run smoothly, meeting strict SLAs and compliance mandates (e.g., HIPAA, HITRUST).
- Compliance & Risk: Ensure all security operations, incident responses, and access controls align with healthcare regulatory requirements and internal security policies.
- Secure Procedures (SOPs): Design, document, and enforce secure operating procedures for end-user requests, on-premise data center servers, and cloud infrastructure.
Technology & Cloud Security
- AWS Cloud Security: Leverage deep experience in AWS to secure cloud infrastructure, ensuring continuous monitoring and secure configurations for all cloud-hosted applications and servers.
- Cyber Security Ecosystem Management: Oversee the administration, tuning, and health of our comprehensive security stack (network, endpoint, data, and email security).
- Proactive Defense: Utilize Breach and Attack Simulation (BAS) tools to continuously test and validate the efficacy of existing security controls against emerging threats.
Innovation & Implementation
- Proof of Concepts (POCs): Lead the evaluation of new security technologies. Design and conduct rigorous POCs to determine their efficacy in our specific healthcare environment.
- Project Delivery: Create comprehensive implementation plans where security is the utmost priority, and drive these projects from initial scoping through to successful closure and operational handover.
Qualification required:
- B.Tech Degree holder [ B.Tech - Preferred ]
- Experience: 7+ years in Cyber Security Operations, Architecture, or Engineering, ideally within a heavily regulated industry (Healthcare, Insurance, or Finance).
- Cloud Expertise: Proven, hands-on experience securing AWS environments, including deep knowledge of IAM, VPCs, Security Groups, and native AWS security services.
- Leadership: Demonstrated experience managing vendor relationships, MSSPs, or partner-led operations teams.
- Project Management: Strong track record of successfully running technical POCs and executing complex security technology deployments.
- Technical Breadth: Strong architectural understanding of network routing, Zero Trust frameworks, endpoint detection mechanisms, and data protection strategies.
- Certifications (Preferred): Any if possible AWS Certified Security Specialty, or specific vendor certifications (e.g., PCNSE, CrowdStrike CCFA/CCAR).