SOC Manager

Job Summary

The SOC Manager leads and manages the Security Operations Center (SOC), ensuring effective monitoring, detection, investigation, and response to cybersecurity threats. This role is responsible for overseeing SOC personnel, tools, and processes, driving continuous improvement in the organization’s security posture, and aligning SOC operations with business objectives and regulatory requirements.

Desired Experience

Minimum 5 years of experience in cybersecurity, with at least 3 years in a SOC leadership role.

Required Competencies

Must-Have

• Proven leadership and people management experience.
• Expertise in incident detection and response.
• Strong strategic planning and problem-solving skills.
• Deep technical understanding of cybersecurity threats and the ability to identify anomalies.
• Extensive hands-on experience with SOC technologies and tool management (e.g., SIEM, SOAR, Big Data platforms).
• Comprehensive knowledge of SOC frameworks, regulatory standards, and compliance requirements.
• Excellent collaboration and communication skills.
• Experience in defining and maintaining SOC SOPs and playbooks.
• Ability to create and manage SOC KPIs and KRIs.

Good-to-Have

• Experience managing technologies such as network security, WAF, EDR, firewalls, Windows, Linux, and databases.
• Experience with threat analysis and response.
• Project management skills.

Background

Strong foundation in the cybersecurity domain, with a focus on operational security and incident response.

Key Responsibilities

• Lead day-to-day SOC operations (24×7).
• Hire, train, and develop career paths and skill development plans for cyber analysts.
• Oversee real-time monitoring of security events and alerts.
• Investigate alerts, trigger incidents, and correlate data to identify complex attacks.
• Lead or support major incident and breach response efforts, ensuring quick and effective resolution.
• Define the SOC’s mission, goals, and security strategy, aligning with business objectives and regulatory frameworks.
• Develop and execute the SOC roadmap and drive maturity improvements.
• Ensure incident response stages are well defined and followed (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned).
• Lead threat hunting, risk assessment, vulnerability management, and tuning of security controls.
• Continuously assess and refine SOC SOPs.
• Drive automation and orchestration to improve efficiency.
• Ensure log sources are onboarded and properly tuned.
• Own and optimize SOC tools (e.g., SIEM, SOAR, Big Data).
• Translate complex technical data into clear reports for executives and stakeholders.

About Tata Consultancy Services

Tata Consultancy Services (TCS) is an IT services, consulting and business solutions organization that has been partnering with many of the world’s largest businesses in their transformation journeys for over 50 years. TCS offers a consulting-led, cognitive powered, integrated portfolio of business, technology and engineering services and solutions. This is delivered through its unique Location Independent Agile™ delivery model, recognized as a benchmark of excellence in software development.

A part of the Tata group, India's largest multinational business group, TCS has over 600,000 of the world’s best-trained consultants in 55 countries.