More jobs:
Job Description & How to Apply Below
Mumbai (Andheri)
Years of
Experience:
7+
Budget: 18 to 20 LPA
Mandatory Skill sets:
Log Parsing, API Integration, DAM Guardium, QNI, REST API Integration, SOAR
Job Description:
We seek an experienced Subject Matter Expert (IBM Qradar SIEM) to support our mission‑critical UAT and Production environments ideal candidate will have deep expertise in Log Parsing, API Integration, REST API Integration, SOAR, DAM Guardium, QNI.
Location:
Mumbai (Andheri)
Key Responsibilities:
SOC Operations & Monitoring
- Perform continuous monitoring of SIEM‑DAM platforms across DC & DR.
- Integrate & manage SIEM, SOAR, XDR, IDS/IPS, UEBA, threat intel platforms.
- Monitor trading platforms, APIs, gateways for anomalies.
- Track zero‑days, emerging threats, and APT campaigns.
Incident Response
- Lead L3 incident triage, containment, eradication, and recovery.
- Conduct root cause analysis with corrective action planning.
- Coordinate with regulators: SEBI, CERT‑In, RBI.
- Conduct cyber drills, red/blue team exercises.
Technology Optimization
- Manage & optimize SOC tools, dashboards, and analytics.
- Drive SOAR automation, ML-based anomaly detection, custom scripts.
- Ensure compliant log management, retention & forensic readiness.
- Align SOC with NOC, fraud monitoring & BCP teams.
Compliance & Reporting
- Ensure alignment with SEBI CSCRF, CERT‑In Guidelines, DPDPA, PCI DSS, ISO 27001.
- Submit regulatory incident reports within mandated timelines.
- Support internal/external audits with accurate documentation.
- Create executive dashboards & incident summaries.
Threat Intelligence & Hunting
- Build & maintain a Cyber Threat Intelligence (CTI) function.
- Conduct proactive threat hunting & analytics‑driven detection.
- Work with engineering & architecture teams to enhance detection coverage.
SOC Governance & Team Enablement
- Create SOC SOPs, playbooks, processes using NIST, ISO 27001, MITRE ATT&CK.
- Implement and track SOC Maturity Roadmap.
- Monitor SOC KPIs such as MTTD, MTTR, containment rates, uptime.
Reporting Responsibilities
- Create & publish custom and predefined QRadar reports.
- Deliver automated & manual reports for management and regulatory needs.
- Zero major audit non‑compliances (SEBI / CERT‑In).
- Reduction in MTTD and MTTR.
- 99%+ SOC availability during cyber incidents.
- Increased percentage of proactively mitigated threats.
- Improved SOC maturity and resilience metrics.
Required Skills
- Strong hands‑on experience with IBM QRadar SIEM & DAM.
- Deep understanding of SOC operations, threat intelligence, and cyber defence.
- Experience in BFSI or financial‑market cyber environments.
- Knowledge of compliance standards & regulatory frameworks.
- Scripting/automation skills (Python / Bash / Power Shell preferred).
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×