CrawlJobs Logo

SOC Lead - Cyber Security Operations

India, Bangalore Employment contract · Job Posted June 03, 2026
Apply Position
Job Link Share

Job Description

We are seeking an experienced SOC Lead to head Vodafone’s Security Operations Centre (SOC) as part of Cyber Defence Operations (CDO). This role is accountable for the end-to-end delivery of SOC monitoring and response services across markets, ensuring consistent, high-quality detection and incident response in a 24x7 environment. The role combines operational leadership, deep technical expertise, and a strong transformation mindset, with a particular focus on embedding automation and AI-driven capabilities into live SOC operations. Acting as a bridge between operational excellence and SOC modernisation, the individual will ensure that new capabilities are effectively adopted, governed, and optimised to strengthen Vodafone’s global cyber defence posture.

Job Responsibility

  • Lead and manage 24x7 SOC operations, ensuring consistent, high-quality alert monitoring, triage, and incident response across all markets
  • Own and drive SOC service performance against key KPIs including MTTT, MTTR, triage quality, and SLA adherence, delivering measurable improvements in detection quality, response speed, and efficiency
  • Oversee the full alert lifecycle, ensuring accurate investigation, containment, escalation, and high-quality incident reporting
  • Continuously enhance detection capabilities by improving SIEM use cases, alert logic, and playbooks, reducing false positives and increasing coverage across priority threat scenarios
  • Drive the adoption of automation, SOAR, and AI-assisted capabilities to improve speed, consistency, and scalability, with appropriate governance and human oversight
  • Lead SOC transformation initiatives focused on reducing alert fatigue, streamlining workflows, and improving analyst productivity
  • Build, coach, and develop a high-performing SOC team through structured capability development, performance management, and knowledge sharing
  • Act as the final escalation point for complex or high-risk incidents, applying expert judgement to validate and close cases
  • Deliver clear, data-driven SOC performance and incident reporting to senior leadership
  • Foster a culture of continuous improvement through post-incident reviews, detection retrospectives, and operational learning

Requirements

  • 8+ years in security operations, including at least 4+ years in a SOC leadership or senior incident response role
  • Proven leader of 24x7 SOC teams, with a strong track record of improving MTTT/MTTR, triage quality, and operational performance
  • Technical authority in incident response, capable of leading complex investigations and making sound decisions under pressure
  • Highly experienced with SIEM platforms such as Splunk, Microsoft Sentinel, Google SecOps, ArcSight, or QRadar, and familiar with EDR/NDR technologies
  • Skilled in driving SOC automation, SOAR, and AI-enabled capabilities, with a clear understanding of governance and responsible use
  • Knowledgeable across network, endpoint, and cloud security, with a strong grasp of attacker techniques and the MITRE ATT&CK framework
  • Analytical decision-maker who balances risk, speed, and business impact in ambiguous situations
  • Passionate about developing people and building sustainable SOC capability for the future
  • Educated to degree level in Cyber Security, Computer Science, Information Technology, or a related discipline (or equivalent practical experience)
  • Holder of relevant certifications such as GIAC, CISSP, or vendor-specific SOC certifications
  • Committed to continuous learning, innovation, and contribution to the wider security community

Nice to have

Interest or exposure to AI/ML in security

What we offer

  • The opportunity to lead a globally impactful SOC function within a recognised Cyber Defence Centre of Excellence
  • Exposure to large-scale, complex cyber defence operations across multiple international markets
  • The chance to shape and influence the future of SOC operations through automation and AI-driven transformation
  • A collaborative, inclusive environment that supports professional growth and continuous learning
  • The ability to work with advanced security technologies and experienced cyber defence professionals

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

SOC Lead - Cyber Security Operations

8 matching positions

Cyber Security Lead-Cyber Security Analyst

Role Overview L3 Cybersecurity Operations Coordinator acting as a CSIRT/SOC rel...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Engineering graduate - preferably B.E. /B tech in I.T or Computer Engineering
  • SC-200: Microsoft Security Operations Analyst
  • BLT1: Blue Team Level 1
  • GCIH or GCFE/GCFA (or equivalent to IR credential)
  • Total Experience Expected: 08-10 years
  • SOC / CDOC Operations
  • CSIRT Coordination
  • Incident Response (L3 / Advanced)
  • Cyber Incident Management & Escalation
  • Threat Mitigation & Remediation
Job Responsibility
Job Responsibility
  • Act as primary cybersecurity contact for local sites
  • Coordinate with global SOC/CDOC teams for operational alignment
  • Ensure proximity-based support for critical assets and business priorities
  • Handle L3 incident escalation and complex case coordination
  • Lead incident triage, mitigation tracking, and remediation follow-up
  • Support end-to-end incident lifecycle (detection → containment → recovery)
  • Manage critical and non-standard cybersecurity incidents
  • Lead containment, threat eradication, and system restoration
  • Validate secure remediation and recovery actions
  • Support CSIRT-led crisis management during major cyber incidents
  • Fulltime
Read More
Arrow Right

Asia Cyber Security Operations Lead

Citigroup seeks an experienced, proactive, and innovative Asia Cybersecurity Ope...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of experience in cybersecurity and financial services
  • Demonstrated leadership experience within security operations or similar functions
  • Proven track record of contributing to and managing security operations and supporting transformative change
  • Strong understanding of the cyber threat landscape, attack vectors, and mitigation strategies
  • Expertise in aspects of Security Operations Centers (SOC), Incident Response, Hunting Operations, Threat Defense, Penetration Testing, Vulnerability Management, Red Team operations, threat intelligence, and cybersecurity models
  • Strong communication, interpersonal, and team collaboration skills, with the ability to operate effectively across diverse regional cultures
  • Ability to work effectively in a fast-paced, high-pressure environment
  • Cybersecurity Leadership: Demonstrated ability to lead and motivate cybersecurity teams, manage projects, and contribute to strategic direction under pressure across multiple functions (SOC, Offensive Security, VM, Fusion Center)
  • Strategic Thinking: Capacity to assist in developing and implementing comprehensive Cybersecurity strategy aligned with business objectives and industry best practices across the JANA and Asia South regions
  • Transformation & Innovation: Experience supporting large-scale cyber and digital transformations, fostering a culture of innovation and continuous improvement
Job Responsibility
Job Responsibility
  • Contribute to and manage aspects of Cybersecurity Incident Response and Crisis Management within the JANA and Asia South regions
  • Oversee Hunting Operations and Threat Defense initiatives to proactively identify and neutralize threats
  • Lead and manage Penetration Testing, Vulnerability Management, and Red Team activities within the cluster
  • Support Third-party incident response and management processes
  • Assist in Critical Vulnerability response and remediation initiatives
  • Participate in and lead specific Cyber Exercises Program activities
  • Contribute to Cyber Threat Intelligence efforts and analysis
  • Support Cyber Data Analytics and reporting for regional operations
  • Assist in the development and implementation of Cybersecurity risk mitigation programs
  • Pro-actively support the Global Head in evolving the Cyber Fusion function and other cybersecurity operational capabilities, contributing to the development and implementation of a comprehensive strategy aligned with Citigroup's business enablement & efficiency objectives and security posture within the JANA and Asia South regions
  • Fulltime
Read More
Arrow Right

Cyber Security Operations Manager

We are seeking a Security Operations Manager to lead and strengthen Frasers Grou...
Location
Location
United Kingdom , Mansfield
Salary
Salary:
Not provided
sportsdirect.com Logo
Sports Direct
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years experience in a similar role with technical expertise and leadership experience in a SOC environment
  • Strong knowledge of threat detection and incident response
  • Passionate about protecting enterprise and OT environments in a complex, global organisation
  • Experience with SOAR/automation
  • Strong communication skills and experience building relationships across departments
Job Responsibility
Job Responsibility
  • Lead and develop the internal SOC team, fostering a proactive, high-performing security operations culture
  • Oversee monitoring and detection across enterprise IT, cloud, and operational technology systems, ensuring alerts and incidents are appropriately managed and escalated
  • Participate in on-call rotations, providing guidance and response expertise during security events
  • Ensure SOC detection tools and capabilities are up-to-date and aligned with evolving threat landscapes
  • Collaborate with vulnerability management, incident response, and GRC teams to integrate risk-informed security operations practices
  • Drive continuous improvement of SOC processes, playbooks, and metrics to enhance operational efficiency and threat visibility
  • Support compliance and regulatory requirements (e.g., PCI DSS), reducing the organisation's overall risk exposure
What we offer
What we offer
  • Frasers Champion - peer nominated scheme where 8 winners will receive double their pay for a month
  • Retail Reconnect - one to two days in a store or warehouse each financial year
  • Fearless 1200 - reward linked to performance and values
  • Frasers Fit - free gym classes and discounted memberships
  • Retail Trust - free access to 24 hour wellbeing helpline, wellness hub, counselling and financial/legal support
  • Fulltime
Read More
Arrow Right

Cyber Security Operations Manager

We are seeking a Security Operations Manager to lead and strengthen Frasers Grou...
Location
Location
United Kingdom , Mansfield
Salary
Salary:
Not provided
frasers.group Logo
Frasers Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years experience in a similar role with technical expertise and leadership experience in a SOC environment
  • Strong knowledge of threat detection and incident response
  • Passionate about protecting enterprise and OT environments in a complex, global organisation
  • Experience with SOAR/automation
  • Strong communication skills and experience building relationships across departments
Job Responsibility
Job Responsibility
  • Lead and develop the internal SOC team, fostering a proactive, high-performing security operations culture
  • Oversee monitoring and detection across enterprise IT, cloud, and operational technology systems, ensuring alerts and incidents are appropriately managed and escalated
  • Participate in on-call rotations, providing guidance and response expertise during security events
  • Ensure SOC detection tools and capabilities are up-to-date and aligned with evolving threat landscapes
  • Collaborate with vulnerability management, incident response, and GRC teams to integrate risk-informed security operations practices
  • Drive continuous improvement of SOC processes, playbooks, and metrics to enhance operational efficiency and threat visibility
  • Support compliance and regulatory requirements (e.g., PCI DSS), reducing the organisation’s overall risk exposure
What we offer
What we offer
  • Frasers Champion
  • Retail Reconnect
  • Fearless 1200
  • Frasers Fit
  • Retail Trust
  • Fulltime
Read More
Arrow Right

Cyber Security Operations Manager

We are seeking a Security Operations Manager to lead and strengthen Frasers Grou...
Location
Location
United Kingdom , Mansfield
Salary
Salary:
Not provided
damart.co.uk Logo
Damart
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years experience in a similar role with technical expertise and leadership experience in a SOC environment
  • Strong knowledge of threat detection and incident response
  • Passionate about protecting enterprise and OT environments in a complex, global organisation
  • Experience with SOAR/automation
  • Strong communication skills and experience building relationships across departments
Job Responsibility
Job Responsibility
  • Lead and develop the internal SOC team, fostering a proactive, high-performing security operations culture
  • Oversee monitoring and detection across enterprise IT, cloud, and operational technology systems, ensuring alerts and incidents are appropriately managed and escalated
  • Participate in on-call rotations, providing guidance and response expertise during security events
  • Ensure SOC detection tools and capabilities are up-to-date and aligned with evolving threat landscapes
  • Collaborate with vulnerability management, incident response, and GRC teams to integrate risk-informed security operations practices
  • Drive continuous improvement of SOC processes, playbooks, and metrics to enhance operational efficiency and threat visibility
  • Support compliance and regulatory requirements (e.g., PCI DSS), reducing the organisation’s overall risk exposure
What we offer
What we offer
  • Frasers Champion- peer nominated scheme where 8 winners will receive double their pay for a month where they have lived the Frasers Group values
  • Retail Reconnect – spend one to two days in one of our stores or the warehouse each financial year
  • Fearless 1200 – reward for living values and delivering impact
  • Frasers Fit – free gym classes as well as discounted memberships to clubs
  • Retail Trust – free access and support including 24 hour wellbeing helpline, wellness hub, counselling and financial/legal support
  • Fulltime
Read More
Arrow Right

Lead Cyber Operations Analyst

Join us at Barclays as a Lead Cyber Operations Analyst, where you’ll play a key ...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands‑on experience in Cyber Security Incident Response or Cyber Operations
  • Deep technical expertise in one or more IR‑relevant domains (e.g. SOC operations, malware analysis, endpoint detection, network security, cloud security)
  • Proven ability to operate calmly and decisively in high‑pressure, time‑critical situations
  • Good knowledge of security toolsets
  • Prior experience with scripting languages & proficiency in data analysis
  • Excellent inter-personal skills with experience of briefing, de-briefing and presenting to senior executives and having effective listening skills
  • Strong understanding of cyber risk, controls, and security governance
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage
  • Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise
  • Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats
  • Triage of data loss prevention alerts to identify and prevent sensitive data for being exfiltrated from the banks network
  • Management of cyber security incidents including remediation & driving to closure
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Security Operation Center (SOC) Cyber Fraud and Web Application Defense Analyst

This is an intermediate level position responsible for leading efforts to preven...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience in SOC
  • Relevant experience in cyber fraud is a plus
  • Following Certifications will be considered a plus: [CISSP, GWAPT and CFE]
  • Bachelor's degree/University degree or equivalent experience
  • Strong knowledge of current Digital Fraud trends including common Account Takeover techniques
  • Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities
  • Knowledge of cutting-edge threats and technologies affecting Web Applications
  • Experience with vulnerability assessment as well as penetration testing
  • Experience with any scripting language and Splunk
  • Understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security)
Job Responsibility
Job Responsibility
  • Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud
  • Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions
  • Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups
  • Execute daily ad hoc tasks or lead small projects as needed
  • Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies
  • Identify areas for tuning use cases to enhance monitoring value
  • Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Analyst – Incident Response & SOC

We don’t hang up the leash until the job is done. Senior Cyber Security Analyst ...
Location
Location
Salary
Salary:
Not provided
zeektek.com Logo
Zeektek
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Email security fundamentals (SPF, DKIM, DMARC)
  • Phishing and malware investigations
  • DFIR / forensic investigation skills
  • Deep incident response experience
  • Threat analysis across multiple log sources
  • Hands-on tooling knowledge (EDR, SIEM, malware analysis, endpoint/network forensics)
  • Strong troubleshooting and scenario-based thinking
  • Strong written and verbal communication skills
  • Working knowledge of Data Loss Prevention concepts/products, Data Encryption concepts, and endpoint management
  • Technical knowledge of common network protocols and design patterns including TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS
Job Responsibility
Job Responsibility
  • Leading investigations and serving as a subject matter expert while correlating data across multiple log sources and systems
  • Continually improving cyber security procedures and documentation to enhance the security posture of the organization
  • Communicating with users, vendors, and other IT personnel on security-related issues, providing expert guidance and support
  • Staying up to date on evolving cyber threats, identifying their impact, and detecting them in our environment
  • Managing infrastructure security systems such as HIDS/NIDS, SIEM, NGAV, EDR, UBA, WAF, DLP, and vulnerability management tools to meet regulatory requirements
  • Collaborating with business groups to establish and maintain strong working relationships
What we offer
What we offer
  • Weekly Direct Deposit
  • 401K Matching
  • Competitive medical, dental and vision insurance
  • Consistent communication throughout your project
  • ZeekTek Referral Program
Read More
Arrow Right