Job Description

We are seeking a seasoned cybersecurity professional to lead our security operations and product management function. This role involves managing a team of security engineers and analysts who handle a wide range of security technologies including AV, EDR, XDR, PIM, PAM, DLP, DAM, WAF, and more.

You will be responsible for end-to-end security delivery — including incident handling, product lifecycle management, automation initiatives, customer engagement, compliance adherence, and continuous innovation.

This is a key leadership position driving operational excellence, ensuring high availability of security services, and aligning with business and client requirements.

8+ Years (minimum) in Cybersecurity Operations, Security Product Management.

ROLES AND RESPONSIBILITIES

Lead the team for delivery, implementation and operations of multiple security products like AV, EDR, XDR, DLP, DAM, PAM, PIM, WAF, etc.
Define and monitor the KPI’s & KRA’s for the team.
Prepare the shift-rosters and update the portals on weekly basis.
Onboarding and managing ongoing operations of new clients for different security products. Maintaining the delivery timelines as per the respective contracts.
Handling escalations and ensuring the incidents, observations, complaints are resolved in the given SLA timelines.
Regularly monitor and report the overall operations of the team.
Hiring & training of new resources in the team.
Guiding the team during the installation phase, monitoring and management phase and if required working personally on the systems to ensure timely resolution.
Evaluating new products and onboarding them.
Conducting regular webinars, sessions with internal teams on latest trends, offerings, product catalog and learnings.
Supporting Sales & Presales team in identifying the right products meeting the compliance requirements.
Maintaining the inventory of all the license used in the MSS team. Coordinating with Purchase team to renew the license of different products.

Key Responsibilities

1. Security Operations & Delivery

Lead day-to-day management of security tools: AV, EDR, XDR, DLP, DAM, PAM, PIM, WAF, etc.
Oversee incident detection, analysis, response, and closure within agreed SLAs.
Conduct regular health checks, patching, upgrades, and fine-tuning of security tools.
Ensure 24x7 service delivery through well-defined processes, runbooks, and escalations.
Track KPIs such as MTTD (Mean Time to Detect), MTTR (Mean Time to Respond), SLA adherence, false-positive rates, etc.

2. Client Engagement & Governance

Act as senior point-of-contact for critical customer escalations and issue resolution.
Participate in customer review meetings, QBRs (Quarterly Business Reviews), and audits.
Prepare MIS reports, compliance dashboards, and security posture updates.
Present security metrics and improvements to stakeholders and leadership.

3. Product & Process Innovation

Evaluate new security solutions, technologies, and automation opportunities.
Work with OEMs/vendors to assess product roadmaps, support models, and training requirements.
Standardize security operations processes, playbooks, and SOPs across all clients.
Collaborate with internal teams to integrate tools with SIEM/SOAR for unified monitoring.

4. Team Management

Lead, mentor, and develop a team of security engineers, analysts, and administrators.
Conduct skill gap assessments and plan training/certifications for the team.
Ensure adequate shift coverage and resource allocation for all projects.
Foster a culture of proactive threat hunting, learning, and innovation.

5. Compliance & Risk Management

Ensure security operations align with industry standards (ISO 27001, SOC2, GDPR, DPDP Act).
Define and enforce secure data handling, retention, and deletion processes.
Participate in audits, risk assessments, and regulatory reporting as required.

Required Skills & Qualifications:

Must-Have

Bachelor’s degree in Computer Science / IT / Cybersecurity (Master’s preferred).
8+ years of hands-on experience in Security Operations / SOC / Security Product Management.
Strong expertise in:
Endpoint & Network Security (AV, EDR/XDR, NDR, IPS/IDS)
Identity & Privileged Access Management (PAM/PIM)
Data Security (DLP, DAM, WAF)
Cloud Security tools and controls

Experience with SIEM/SOAR platforms for correlation and response automation.
Excellent incident management, problem-solving, and root cause analysis skills.
Strong communication and client-facing presentation skills.

Good-to-Have

Relevant certifications: CISSP, CISM, CISA, CEH, CCSP, or OEM-specific certifications (e.g., Trendmicro, Symantec, Trellix, Arcon, GTB, CrowdStrike, CyberArk, etc….).
Experience with scripting/automation (Python, PowerShell) for security orchestration.
Exposure to threat intelligence, vulnerability management, and compliance frameworks.

Qualification & Certification