SOC (Security Operations Center) - Deputy Manager

Job Title: Deputy Manager SOC (Security Operations Center)

Location: Gurgaon

Experience: 4+ Years

Notice Period: Immediate / Early Joiners Preferred

Employment Type: Full-Time

Role Overview

We are hiring a SOC Deputy Manager for Gurgaon with strong hands-on expertise in CrowdStrike, Endpoint DLP, and Trend Micro (EDR/XDR/Email Security) technologies.

The role requires an operations-driven security professional capable of handling real-time monitoring, threat detection, incident response, and endpoint security governance within enterprise environments.

This position involves both hands-on SOC operations and L1/L2 team oversight.

Key Responsibilities

1. SOC Monitoring & Incident Response

• Monitor and analyze security alerts from SIEM, EDR, DLP, and endpoint tools.
• Perform triage, investigation, and containment of security incidents.
• Conduct root cause analysis (RCA) and document incident reports.
• Coordinate with IT, network, and infrastructure teams for remediation.

2. Endpoint Security (CrowdStrike)

• Manage and administer CrowdStrike Falcon (policy configuration, threat hunting, response actions).
• Investigate malware, ransomware, and endpoint-based threats.
• Perform IOC analysis and containment actions.
• Optimize detection rules and false-positive tuning.

3. DLP Endpoint

• Implement and manage Endpoint DLP policies.
• Monitor data exfiltration risks across endpoints.
• Tune policies for business alignment and minimal disruption.
• Investigate DLP alerts and coordinate corrective actions.

4. Trend Micro Security Tools

• Manage and support Trend Micro solutions (EDR/XDR/Email Security/Endpoint Protection).
• Ensure threat intelligence updates and signature management.
• Assist in malware analysis and threat containment activities.

5. Governance & Reporting

• Track SLA adherence for incident resolution.
• Prepare SOC dashboards and weekly/monthly reports.
• Support audits and compliance requirements.
• Contribute to playbook development and process improvements.

6. Team & Stakeholder Coordination

• Guide L1 analysts and support escalations.
• Participate in client/business security review meetings.
• Support continuous improvement and automation initiatives.

Required Skills & Experience

• 4+ years of experience in SOC / Security Operations
• Hands-on experience with CrowdStrike Falcon
• Experience managing Endpoint DLP solutions
• Experience with Trend Micro security solutions
• Strong understanding of incident response lifecycle
• Knowledge of MITRE ATT&CK framework
• Familiarity with SIEM platforms (Splunk/QRadar/Sentinel added advantage)
• Strong analytical and communication skills

Preferred Certifications (Good to Have)

• CEH / CHFI
• CrowdStrike Certification (if any)
• Security+ / CySA+