SOC Manager – Security Operations Centre

SOC Manager will lead and scale the Security Operations Centre, delivering 24x7 monitoring, incident response, and MDR services to enterprise and BFSI clients. This role requires a balance of technical expertise, operational leadership, and client engagement.

Responsibilities:

• Lead and manage SOC operations, including security monitoring, incident detection, and response.

• Oversee the end-to-end incident management lifecycle.

• Manage and optimise SIEM, EDR, XDR, and security monitoring platforms.

• Ensure SLA compliance and service delivery across multiple clients.

• Provide technical leadership and mentorship to SOC analysts (L1/L2).

• Develop, review, and enforce SOC playbooks, SOPs, and runbooks.

• Drive continuous improvement in detection use cases and operational efficiency.

• Identify and implement automation opportunities.

• Act as the primary escalation point for major security incidents.

• Communicate effectively with technical teams, management, and client stakeholders.

• Build and maintain strong client relationships and trust.

• Provide strategic direction for SOC growth and service enhancement.

Candidate profile:

• Degree in IT / Cybersecurity or equivalent.

• 6–10 years of experience in cybersecurity.

• 2–4 years in a SOC leadership or senior analyst role.

• Experience managing SIEM implementation or operations.

• Professional certifications such as OSCP, CEH, CHFI, GCIH, CISM, or CISSP.

• SIEM-specific certifications (XSIAM, Fortinet, LogRhythm, Sentinel, Splunk, etc.).

• Strong hands-on experience with SIEM platforms.

• Proven expertise in security monitoring and incident response.

• Experience with EDR/XDR platforms (CrowdStrike, Cortex XDR, Trend Micro, Defender, etc.).

• Hands-on experience with SOAR platforms and the development of automation playbooks.

• Good understanding of network security, logs, and threat detection techniques.

• Familiarity with the NIST and MITRE ATT&CK frameworks.

• Exposure to cloud security (Azure/AWS).

• Knowledge of NDR tools (Darktrace, ExtraHop, etc.) is a plus.

• Scripting knowledge (Python, PowerShell, or SQL) is desirable.

Hayleys is an equal opportunity employer.

Pay and benefits for the above position will be competitive, with rewards based on performance.