Job Title

Title: SOC and Cyber Defence Consultant Duration:06+ Months (possible extension) Location: Noida, Uttar Pradesh, IndiaCompany Overview: Fluidechis atechnology consulting and managedservices firm focused on cybersecurity. Founded in 2014andheadquartered in Gurugram —and today with aclient base spanning over 100 organisations worldwide —Fluidech designs IT solutions aligned with business objectives, fostering trusted relationships and delivering measurable performance improvements. Established as a born-in-the-cloud company, Fluidech has evolved into a trusted technology partner that helps businesses build(Cloud & Infrastructure), automate (DevOps), and secure (Cyber Security services).Our solutions span diverse industry verticals, aligned with each client’s business goals. In addition toholdingISO 9001 and ISO 27001 certificationsand an award-winning cybersecurity team, the company has a strong value proposition in its GRC services across frameworks, including but not limited toNCIIPC’s CAF, SEBI’s CSCRF,and others.Duties and Responsibilities: Lead and manage the Security Operations Centre (SOC)team,partnering with our 3rd party SOC Managed Service Provider (one of the Big Four),driving accountability, and prioritising their efforts by providing direction and support to ensure the team's effectiveness and productivity. Serve as the main internal security operations point of contact for clients. Partner with our 3rd-party SOC Managed Service Provider, driving accountability and prioritising their efforts. Oversee the day-to-day operations of the SOC team, ensuring effective response to security incidents and alerts. Oversee the management of our Managed Security Operations’ managedSIEM, XDR and NDR solutions , and Threat intel and brand protection platforms, ensuring their optimal performance and effectiveness in detecting and responding to security incidents. Lead the management and enhancement ofMDR and Managed SIEM services , preferably with expertise inMicrosoft Sentinel and Trend Micro Vision One . Collaborate with the SOC analysts and engineering team to define and implement SIEM rules, alerts, and correlation logic to improve the accuracy and efficiency of threat detection. Provide guidance and support to the SOC team in the ingestion and analysis of logs from various systems and applications into the SIEM platform, ensuring 100% log source integration. Develop and implement SOC strategies, policies, and procedures to enhance the organisation's security posture and incident response capabilities. Oversee the monitoring and analysis of security events and incidents, ensuring timely detection, investigation, and response to potential threats or vulnerabilities. Collaborate with cross-functional teams, outside of IT as and when required and also with 3rd party partners, to ensure alignment and effective communication regarding security incidents and mitigation strategies. Drive the continuous improvement of SOC processes and procedures to enhance efficiency and effectiveness. Taking a proactive role in utilising Threat Intelligence and Threat Hunting activities, ensuring the SOC is ahead of potential security threats. Establish and maintain relationships with external partners, vendors, and industry peers to stay updated on emerging threats, best practices, and industry trends. Conduct regular assessments and audits of SOC processes, systems, and controls to identify areas for improvement and ensure compliance with regulatory requirements. Develop and deliver comprehensive reports and metrics on SOC performance, including incident trends, response times, effectiveness and other SOC key performance indicators. Stay abreast of the evolving cybersecurity landscape, emerging threats, and industry standards, providing recommendations for proactive security measures and continuous improvement of the SOC. Take complete ownership of clients' Threat Intelligence platform and conduct external brand monitoring, dark web monitoring, data breaches and other associated attack surfaces identified by the threat intelligence platform. Ensure the gaps are closed promptly, and any relevant advisories are communicated to the SOC team or other relevant stakeholders proactively. Manage security operations projects, including process improvement and technology investment. Pursue an automation-first approach without compromising the quality and readiness of the SOC. Access all the existing and new initiatives in clients for security clearance before implementation in production. Drive the security architecture and implementation of new security technology solutions. Own and drive the cloud security posture management for clients' cloud platforms, govern and maintain the security posture under an acceptable low risk score. Own and govern the operations of security technology solutions likeIAM, PAM, Email security gateway, Firewalls, XDR, Cloud Security, Threat Intel, Zscaler web proxy, micro segmentation, and NDR solutions . Define best practices and conduct technical audits/assessments for the above-mentioned cyber defence solutions, part of continuous improvement and proactive defence to the trending threat landscape Conduct weekly security reviews with partners providing managed service. Recommend and drive best practice implementation for these security technologies to improve overall security posture Own, execute and conduct various cyber maturity assessments likeSOC CMM and NIST CSF . Plan and drive to reach the target maturity score with new initiatives or gap closures identified during the assessments. Conduct POC for new initiatives, and drive implementation of new cyber solutions with support from implementation partners.QUALIFICATIONS & EXPERIENCE:Qualifications: The candidate must be a graduate engineer in Engineering, Computer Science, Information Security, or a related field. Relevant information security and governance certifications (e.g., CEH, CISSP, CISM, CCSK, ISO 27001/22301/20000 LA/LI, ITIL, etc.) preferred.Experience: The candidate should have at least8-10 years of experiencein managing aCyber Security Operations Centre (SOC),with a focus on managed security operations, cloud security, infrastructure security, and incident response, etc. In-depth knowledge of security operations, incident response methodologies, and security technologies(SIEM, IDS/IPS, EDR/XDR/NDR, Firewall, Email security gateway, IAM, PAM, CSPM, web proxy tools , etc.). Good knowledge of various industry leading cyber security frameworks, including but not limited toMITRE ATT&CK, MITRE D3FEND, NIST CSF, CIS Controls, ISO/IEC 27001, OWASP , etc. Strong networking concepts, including an in-depth understanding ofTCP/IP protocols, firewall configuration, network segmentation, VPNs , etc. Strong understanding ofThreat Intelligence, Threat Hunting, Vulnerability Management, and risk assessment frameworks . Experience in creating and refiningSIEM rules , alerts, and correlation logic. Experience working in a fast-paced, dynamic environment, with the ability to prioritise and manage multiple security incidents simultaneously. Ability to enhance SOC processes and implement best practices in security operations. Security assessment and clearances as required for the new and existing applications/programs. Experience in the deployment of security tools and solutions in a project mode. Understanding ofoperational technology (OT)security principles and best practices. Understanding and knowledge of IT Service management processes based onISO 20000 or ITIL . Excellent communication skills, with the ability to collaborate effectively across departments and levels of the organisation.Why Join FLUIDECH? Join a growing, award-winning company recognised for excellence in cybersecurity. Work alongside a passionate, innovative team focused on cutting-edge technologies. Lead strategic client relationships and high-impact deals. Be part of an organisation that values transparency, trust, and growth.Benefits: Competitive compensation with performance-based incentives Health insurance and wellness programs Training and certification support in relevant technologies and frameworks Opportunities for professional growth and internal career advancement Dynamic and collaborative work environment Regular team outings, recognition programs, and knowledge-sharing sessions Exposure to high-impact projects across diverse industry sectors