Track Manager - Security Investigations, SIEM
India
Job Description
Track Manager - Security Investigations, SIEM
Job Summary
This role is accountable for leading advanced security event investigation and incident response operations, leveraging SOAR and SIEM solutions to optimize security monitoring and response processes. The individual drives operational excellence, implements technical improvements, and empowers teams to deliver high-impact security services that align with organizational and client objectives.
Key Responsibilities
1. Lead security event triage and investigation by applying advanced SOC Analyst and SOAR workflows, ensuring rapid detection, analysis, and remediation of security incidents across multiple clients.
2. Optimize and automate incident response processes using SOAR platforms, developing playbooks and orchestrating integrations with SIEM and other security tools to improve operational efficiency.
3. Oversee technical solution implementation for SIEM platforms, ensuring robust information flow, system integration, and compliance with organizational and client security policies.
4. Mentor and empower SOC team members by providing expert guidance, fostering skill development, and ensuring alignment with project and organizational objectives.
5. Collaborate with stakeholders to understand client security requirements, translating them into actionable operational plans and ensuring the support team meets or exceeds client SLAs.
6. Drive continuous improvement initiatives by evaluating current SOC operations, introducing innovative automation strategies, and standardizing best practices for security event investigation.
7. Develop and maintain comprehensive management reports and dashboards leveraging SOC, SOAR, and SIEM data, supporting informed decision-making and transparent communication of progress and KPIs.
2. Optimize and automate incident response processes using SOAR platforms, developing playbooks and orchestrating integrations with SIEM and other security tools to improve operational efficiency.
3. Oversee technical solution implementation for SIEM platforms, ensuring robust information flow, system integration, and compliance with organizational and client security policies.
4. Mentor and empower SOC team members by providing expert guidance, fostering skill development, and ensuring alignment with project and organizational objectives.
5. Collaborate with stakeholders to understand client security requirements, translating them into actionable operational plans and ensuring the support team meets or exceeds client SLAs.
6. Drive continuous improvement initiatives by evaluating current SOC operations, introducing innovative automation strategies, and standardizing best practices for security event investigation.
7. Develop and maintain comprehensive management reports and dashboards leveraging SOC, SOAR, and SIEM data, supporting informed decision-making and transparent communication of progress and KPIs.
Skill Requirements
1. Advanced Knowledge Of Soar Platforms (Such As Splunk Soar, Palo Alto Cortex Xsoar, Ibm Resilient, Or Similar) And Automation Playbook Development
2. Excellent Understanding Of Siem Technologies (Such As Splunk, Ibm Qradar, Arcsight, Or Similar), Including Rule Configuration, Log Management, And Threat Detection
3. Advanced Skills In Security Monitoring, Threat Intelligence, And Vulnerability Management
4. Strong Leadership, Mentoring, And Team Management Abilities
5. Excellent Analytical, ProblemSolving, And Communication Skills
2. Excellent Understanding Of Siem Technologies (Such As Splunk, Ibm Qradar, Arcsight, Or Similar), Including Rule Configuration, Log Management, And Threat Detection
3. Advanced Skills In Security Monitoring, Threat Intelligence, And Vulnerability Management
4. Strong Leadership, Mentoring, And Team Management Abilities
5. Excellent Analytical, ProblemSolving, And Communication Skills
Other Requirements
1. Recommended: Certified SOC Analyst (CSA), GIAC Security Operations Certified (GSOC), or equivalent
2. Optional but valuable: SOARspecific certifications (e.g., Splunk SOAR Certified Automation Specialist, Palo Alto XSOAR Certified Engineer
2. Optional but valuable: SOARspecific certifications (e.g., Splunk SOAR Certified Automation Specialist, Palo Alto XSOAR Certified Engineer
Information at a Glance
23
Benefits
At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to:
https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg
Industry-benchmarked compensation
https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg
Best-in-class healthcare benefits
https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg
Personal time off
https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg
Maternity and paternity benefits
https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg
Access to skills / higher education programs/resources
https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg
Discounts on products and services via Benefit Box
https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg
Participate in CSR programs and live life with a purpose
https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg
Opportunities to grow and advance your career
Note : The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.