Deputy SOC Manager, Cybersecurity Operations

Over the last 20 years, Ares’ success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry.

Job Description

Primary Functions and Essential Responsibilities

• Communicating and building stakeholder relationships across the Cybersecurity team, as well as the broader Technology and Business teams.
• Manage a team of analysts and contractors onsite or offsite to monitor for, investigate, and respond to security events.
• Provide leadership to Security Operations Centre Analysts as well as participate with investigations, identification, scoping, and reporting on cyber threats.
• Train, mentor and motivate junior team members
• Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
• Ability to clearly identify, capture, articulate, design, implement, and maintain security operations uses cases.
• Manage security event investigations and partnering with other departments as needed.
• Coordinate resources during incident response efforts, assists with classifying security events, direct and guide remediation, support documentation as needed
• Experience working with SOAR to automate repetitive tasks and drive efficiencies allowing analysts to work on more advanced tasks.
• Evaluate and update SOC runbooks, playbooks, and procedures as appropriate.
• Develop metrics and scorecards to measure risk to the organization, as well as effectiveness and efficiency of SOC associate.
• Prepare reports of analysis and results to provide briefings to management
• Responsible for managing security incidents identified by internal controls or external SOC partners.
• Proficient in Incident Response and automation workflows as it relates to Security Operations
• Partner with the Security Engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
• Lead and direct threat hunting related to incidents
• Engage with tuning of alerts to help improve their fidelity
• Investigate, document, and report on information security issues and emerging trends

Qualifications

Education:

• Bachelor’s degree or equivalent experience in Computer Science, Information Technology, cybersecurity, Business or equivalent field
• Professional Certifications like GSEC, GCIA, CISSP, OSCP, etc., will be a plus

Experience Required:

• More than 8-10 years of experience in Enterprise Cybersecurity or with a reputed Services / consulting firm offering Security Consulting, Implementation and Managed Security services
• 7+ years of proven experience in the Security Operations Center (SOC)
• Experience managing people, including technical staff
• Experience managing 24x7 operational environment
• Experience in SOAR (Security Orchestration Automation Response) platform is preferred
• Experience in investigations using formal chain-of-custody methods, forensic tools and standard processes
• · Experience in Threat Hunting would be a plus

General Requirements:

• Excellent communication skills with the ability to influence other business units and peer teams
• Good understanding of the offensive and defensive side of security
• Excellent in communicating business risk from cybersecurity issues
• Driving measurable improvement in monitoring and response capabilities at scale
• Strong teammate - collaborates well with others to solve problems and actively incorporates input from various sources.
• Analytical and problem-solving approach with demonstrated effective decision-making skills
• Works calmly under pressure and with tight deadlines
• Track record of successful personnel management
• Is proactive and highly trustworthy; leads by example
• Working Shift Hours is morning 6 am to 3 pm IST and are subject to change basis business needs

Reporting Relationships

There is no set deadline to apply for this job opportunity. Applications will be accepted on an ongoing basis until the search is no longer active.