Security Operations Center - Lead

ICICI Securities

Navi Mumbai, Mumbai, India

10-12 Years

Save

Posted 3 hours ago
Be among the first 10 applicants

Early Applicant

Job Description

Relevant 10-12 years of experience working within the Security Operations Centre, with emphasis on security platform implementation & administration.

Bachelors (Graduation) or higher in Computer Science or equivalent.

Experience with LogRhythm and/or other platforms SIEM systems like SPLUNK,

ArcSight.

Experience with IBM Resilient (preferred) or equivalent SOAR technology like Demisto, Splunk, Service Now.

Technical Experience & Skills Required:

Excellent understanding and proven hands-on experience in SIEM concepts such as correlation,

aggregation, normalization, and parsing.

Experience with deploying and managing a large SIEM deployment. Excellent understanding of

enterprise logging standards, with a focus on application logging

Advanced knowledge of content creation concepts and best practices

Excellent understanding of regular expressions, development of custom/flex Parsers

Strong knowledge of frameworks such as Cyber Kill Chain, Mitre and Adversary Tactics, Techniques

and Procedures.

Experience in Implementation and support of major SOAR platform (preferred IBM Resilient) and developing playbooks for automation.

Expertise in writing searches, SIEM Infrastructure and content use case development, well-versed with SIEM architecture and design

Experience in SIEM & Resilient Administration and analytics

development on Information Security, Triage events, Incident Analysis.

Hands on exp with information security tools such as SIEMs, FW, IDS/IPS, EDR, Sandboxes,

Vulnerability Management, etc.

Excellent Python and Unix Shell scripting skills

Understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies.

Excellent understanding of Cyber Security Operations, Incident Response processes.

Experience in using scripting languages to automate tasks and manipulate data. Programming

experience is a plus.

Experience working in a large enterprise environment and integrating solutions in a multi-vendor environment.

Preferred product specialization certifications on QRadar or LogRhythm (SIEM), Resilient (SOAR),

CrowdStrike (EDR), Mimecast (Email Security)

More Info

Job Type:

Industry:

Function:

Employment Type:

About Company

ICICI SecuritiesJob Source: www.linkedin.com

Job ID: 144652405

Jobs by Skill - IT

Jobs by Skill - Non IT

International Jobs

Last Updated: 21-03-2026 06:50:31 PM

Homejobs in Navi MumbaiSecurity Operations Center - Lead

Do you want to see more relevant and perfect job for you?

Beware of Scammers

We don’t charge any money for job offers

What it feels like to have

48% more interview calls?

To get 5X more recruiter views on your profile