Security Operations Specialist

We are seeking a seasoned cybersecurity professional to lead our security operations and product management function. This role involves managing a team of security engineers and analysts who handle a wide range of security technologies including AV, EDR, XDR, PIM, PAM, DLP, DAM, WAF, and more.

You will be responsible for end-to-end security delivery including incident handling, product lifecycle management, automation initiatives, customer engagement, compliance adherence, and continuous innovation.

This is a key leadership position driving operational excellence, ensuring high availability of security services, and aligning with business and client requirements.

8+ Years (minimum) in Cybersecurity Operations, Security Product Management.

ROLES AND RESPONSIBILITIES

• Lead the team for delivery, implementation and operations of multiple security products like AV, EDR, XDR, DLP, DAM, PAM, PIM, WAF, etc.
• Define and monitor the KPIs & KRAs for the team.
• Prepare the shift-rosters and update the portals on weekly basis.
• Onboarding and managing ongoing operations of new clients for different security products. Maintaining the delivery timelines as per the respective contracts.
• Handling escalations and ensuring the incidents, observations, complaints are resolved in the given SLA timelines.
• Regularly monitor and report the overall operations of the team.
• Hiring & training of new resources in the team.
• Guiding the team during the installation phase, monitoring and management phase and if required working personally on the systems to ensure timely resolution.
• Evaluating new products and onboarding them.
• Conducting regular webinars, sessions with internal teams on latest trends, offerings, product catalog and learnings.
• Supporting Sales & Presales team in identifying the right products meeting the compliance requirements.
• Maintaining the inventory of all the license used in the MSS team. Coordinating with Purchase team to renew the license of different products.

Key Responsibilities

1. Security Operations & Delivery

• Lead day-to-day management of security tools: AV, EDR, XDR, DLP, DAM, PAM, PIM, WAF, etc.
• Oversee incident detection, analysis, response, and closure within agreed SLAs.
• Conduct regular health checks, patching, upgrades, and fine-tuning of security tools.
• Ensure 24x7 service delivery through well-defined processes, runbooks, and escalations.
• Track KPIs such as MTTD (Mean Time to Detect), MTTR (Mean Time to Respond), SLA adherence, false-positive rates, etc.

2. Client Engagement & Governance

• Act as senior point-of-contact for critical customer escalations and issue resolution.
• Participate in customer review meetings, QBRs (Quarterly Business Reviews), and audits.
• Prepare MIS reports, compliance dashboards, and security posture updates.
• Present security metrics and improvements to stakeholders and leadership.

3. Product & Process Innovation

• Evaluate new security solutions, technologies, and automation opportunities.
• Work with OEMs/vendors to assess product roadmaps, support models, and training requirements.
• Standardize security operations processes, playbooks, and SOPs across all clients.
• Collaborate with internal teams to integrate tools with SIEM/SOAR for unified monitoring.

4. Team Management

• Lead, mentor, and develop a team of security engineers, analysts, and administrators.
• Conduct skill gap assessments and plan training/certifications for the team.
• Ensure adequate shift coverage and resource allocation for all projects.
• Foster a culture of proactive threat hunting, learning, and innovation.

5. Compliance & Risk Management

• Ensure security operations align with industry standards (ISO 27001, SOC2, GDPR, DPDP Act).
• Define and enforce secure data handling, retention, and deletion processes.
• Participate in audits, risk assessments, and regulatory reporting as required.

Required Skills & Qualifications:

Must-Have

• Bachelors degree in Computer Science / IT / Cybersecurity (Masters preferred).
• 8+ years of hands-on experience in Security Operations / SOC / Security Product Management.
• Strong expertise in:
• Endpoint & Network Security (AV, EDR/XDR, NDR, IPS/IDS)
• Identity & Privileged Access Management (PAM/PIM)
• Data Security (DLP, DAM, WAF)
• Cloud Security tools and controls

• Experience with SIEM/SOAR platforms for correlation and response automation.
• Excellent incident management, problem-solving, and root cause analysis skills.
• Strong communication and client-facing presentation skills.

Good-to-Have

• Relevant certifications: CISSP, CISM, CISA, CEH, CCSP, or OEM-specific certifications (e.g., Trendmicro, Symantec, Trellix, Arcon, GTB, CrowdStrike, CyberArk, etc.).
• Experience with scripting/automation (Python, PowerShell) for security orchestration.
• Exposure to threat intelligence, vulnerability management, and compliance frameworks.

Qualification & Certification

• Bachelors degree in Computer Science / IT / Cybersecurity (Masters preferred).
• 8+ years of hands-on experience in Security Product Management.

EXPERIENCE

10+ Years (minimum) in Cybersecurity Operations, Security Product Management.