Job Description

About Exotel

----------------





Exotel is a leading provider of AI transformation to enterprises for customer engagement and experience. With over 20 billion annual conversations across Omni channel, voice, agents and bots, Exotel is trusted by more than 7000 clients worldwide, spanning industries such as BFSI, Logistics, Consumer Durables, E-commerce, Healthcare and Education.



Customer expectations are evolving and businesses face the challenge of balancing the need for increased revenue, optimized costs, and exceptional customer experience (CX). Exotel steps forward as your transformative partner, offering an AI-powered communication solution to address all three!

About the role

SOC Manager will be responsible for leading and managing 24x7 Security Operations Centre ensuring compliance to policies, process adherence, and process improvisation to achieve operational objectives of incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring security events.



Key requirements


Manage and Lead SOC operations, security incidents, investigations, threat detection preventions Implement and operationalise CSIRT, SOAR, SIEM, DLP, Network monitoring, Forensic tools etc. Ensure key information security incidents and issues are identified, addressed and resolved in a timely manner. Responsibility for handling critical security incident response tasks to minimize impact and developing Security Incident Response Plan and runbooks for effective incident management Assist root cause analysis, identify information security weakness, develop corrective actions and risk management input as needed. Validate, verify and report protective or countermeasure solutions, both technical and administrative Provision of Critical Incident Response Report and lessons learned to key stakeholders. Remain current on developments affecting information risk and advise department management Acquire artifacts from a client or server during an investigation using different tools Assess efficacy of security controls, document and report control failures and gaps to stakeholders. Provide remediation guidance and prepare management reports to track remediation activities. Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment Recommend security monitoring or device tuning to reduce false positive detections Build and run various phishing, vishing, smishing & other security awareness campaigns Must have experience working on following technologies: Endpoint detection and response, PowerShell, anti-virus, email security, Linux, DLP, deception tools, cloud platform security Implement SOC Automation and mature operations excellence
Knowledge


Familiarity with the Dev Sec Ops lifecycle, technology systems and platform (Cloud - AWS, Windows and Linux) would be beneficial Well versed with well-known security frameworks such as ISO 27001:2013 / NIST CSF / PCI DSS / ISO 22301 / STRIDE / MITRE etc. Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, etc. Information systems auditing, monitoring, controlling, and assessment process * Incident response management