More jobs:
Job Description & How to Apply Below
Mumbai (Andheri)
Years of
Experience:
7+
Budget: 18 to 20 LPA
Mandatory Skill sets:
Log Parsing, API Integration, DAM Guardium, QNI, REST API Integration, SOAR
Job Description:
We seek an experienced Subject Matter Expert (IBM Qradar SIEM) to support our mission‑critical UAT and Production environments ideal candidate will have deep expertise in Log Parsing, API Integration, REST API Integration, SOAR, DAM Guardium, QNI.
Location:
Mumbai (Andheri)
Key Responsibilities:
SOC Operations & Monitoring
Perform continuous monitoring of SIEM‑DAM platforms across DC & DR.
Integrate & manage SIEM, SOAR, XDR, IDS/IPS, UEBA, threat intel platforms .
Monitor trading platforms, APIs, gateways for anomalies.
Track zero‑days, emerging threats, and APT campaigns.
Incident Response
Lead L3 incident triage, containment, eradication, and recovery.
Conduct root cause analysis with corrective action planning.
Coordinate with regulators: SEBI, CERT‑In, RBI .
Conduct cyber drills, red/blue team exercises.
Technology Optimization
Manage & optimize SOC tools, dashboards, and analytics.
Drive SOAR automation, ML-based anomaly detection, custom scripts .
Ensure compliant log management, retention & forensic readiness.
Align SOC with NOC, fraud monitoring & BCP teams.
Compliance & Reporting
Ensure alignment with SEBI CSCRF, CERT‑In Guidelines, DPDPA, PCI DSS, ISO 27001 .
Submit regulatory incident reports within mandated timelines.
Support internal/external audits with accurate documentation.
Create executive dashboards & incident summaries.
Threat Intelligence & Hunting
Build & maintain a Cyber Threat Intelligence (CTI) function.
Conduct proactive threat hunting & analytics‑driven detection.
Work with engineering & architecture teams to enhance detection coverage.
SOC Governance & Team Enablement
Create SOC SOPs, playbooks, processes using NIST, ISO 27001, MITRE ATT&CK .
Implement and track SOC Maturity Roadmap.
Monitor SOC KPIs such as MTTD, MTTR, containment rates, uptime .
Reporting Responsibilities
Create & publish custom and predefined QRadar reports.
Deliver automated & manual reports for management and regulatory needs.
Zero major audit non‑compliances (SEBI / CERT‑In).
Reduction in MTTD and MTTR.
99%+ SOC availability during cyber incidents.
Increased percentage of proactively mitigated threats.
Improved SOC maturity and resilience metrics.
Required Skills
Strong hands‑on experience with IBM QRadar SIEM & DAM .
Deep understanding of SOC operations, threat intelligence, and cyber defence.
Experience in BFSI or financial‑market cyber environments.
Knowledge of compliance standards & regulatory frameworks.
Scripting/automation skills (Python / Bash / Power Shell preferred).
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×