Job Description

7 - 9 Years
1 Opening
Bangalore

Role description

Role Proficiency:



Manage the onboarding of new customers. Develop and create new operation processes. Lead SOC service for various customers including deep investigation and cyber security subject expertise.



Outcomes:



Manage a complete cyber security incident and provide deep investigation

Create and manage improvement process for customer services

Working on improving customer detection by adding relevant detection rules

Onboarding new customer to SOC service

Develop and update operation methodology

Be the point of contact for operational (technical) issues and platform/service improvement

Guide SIEM experts

Be the cyber security subject expert


Measures of Outcomes:



Successful incident management

Successful onboarding of customers to services

Successful implementation of improvement programs


Outputs Expected:



Continuous improvement of the services:



Monitoring capability

Investigation process

Operation process

Methodology

Incident management

Mitigation and automation action


Skill Examples:



Presentation skill (Verbal) and soft skill (hands on verbal and writing)

Excellent analytics skill

Ability to lead activity on cross culture/ geo location team to success in task

Accountability

Ability to think out of the box to find solution

Project management skills

Proficient in programming languages such as C C# Python Perl Java PHP and Ruby on Rails.


Knowledge Examples:



Knowledge Examples



Experience in cyber security discipline

Excellent knowledge of cyber security defence methods (tools topology best practices)

Excellent knowledge on Mitre frameworks (or other common frameworks)

Practical experience with developing and implementation processes

Relevant certification in cyber security

Advance knowledge with SIEM solution

Experience with cloud (working secure monitoring)


Additional Comments:



"Use Case Manager is responsible for developing and maintaining security use cases within Microsoft Sentinel to enhance threat detection, investigation, and response capabilities. This role bridges the gap between threat intelligence, SOC operations, and platform engineering, ensuring that Sentinel is effectively leveraged to protect the organization's digital assets. Key Responsibilities Use Case Development Design and implement detection rules, analytics, and playbooks tailored to organizational threats. Translate threat intelligence and risk scenarios into actionable Sentinel use cases. Continuously refine use cases based on threat landscape changes and incident learnings. Incident & Case Management Leverage Sentinel's native case management features to group incidents, assign tasks, and track remediation efforts. [www.modern...ecurity.nl] Link multiple incidents to a single case for complex investigations. [techcommun...rosoft.com] Automation & Orchestration Develop and maintain Sentinel playbooks for automated incident response, enrichment, and ticketing system integration. [learn.microsoft.com] Collaborate with SOC engineers to streamline workflows using automation rules. Collaboration & Governance Work with SOC analysts, threat hunters, and platform teams to ensure use cases align with operational needs. Implement Role-Based Access Control (RBAC) for case and incident visibility. [learn.microsoft.com] Monitoring & Optimization Monitor use case performance and detection efficacy. Tune analytics rules and detection logic to reduce false positives and improve quality. Required Skills & Qualifications Strong understanding of SIEM platforms, especially Microsoft Sentinel. Experience in cybersecurity operations, threat detection, and incident response. Familiarity with KQL (Kusto Query Language) for writing Sentinel queries. Knowledge of MITRE ATT&CK framework and threat modeling. Experience with automation tools and playbook development in Sentinel. Excellent analytical, documentation, and communication skills."

Skills

Detection rule creation,MITRE Framework,CyberSecurity

About UST

UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact--touching billions of lives in the process.