Title:  Senior Manager- Security Operations Center (SOC)

Areas Of Responsibility

At Sun Pharma, we commit to helping you “Create your own sunshine”— by fostering an environment where you grow at every step, take charge of your journey and thrive in a supportive community.

Are You Ready to Create Your Own Sunshine?

As you enter the Sun Pharma world, you’ll find yourself becoming ‘Better every day’ through continuous progress. Exhibit self-drive as you ‘Take charge’ and lead with confidence. Additionally, demonstrate a collaborative spirit, knowing that we ‘Thrive together’ and support each other’s journeys.”

Areas of Responsibility:

The SOC Manager is responsible for leading the Sun Pharma's Security Operations Center, ensuring continuous monitoring, detection, investigation, response, and recovery from cybersecurity threats. The role manages SOC analysts, incident responders, SIEM operations, threat intelligence, security monitoring technologies, and continuous improvement of security operations capabilities. He will work closely with IT, Infrastructure, Cloud, Compliance, Risk Management, and Business teams to protect critical business assets and maintain cyber resilience.

SOC Operations Management

• Lead and manage 24x7 Security Operations Center activities.
• Develop SOC strategy, roadmap, and operational maturity plans.
• Manage Tier 1, Tier 2, and Tier 3 security analysts.
• Ensure effective monitoring of security events across on-premises, cloud, and SaaS environments.
• Establish SOC processes aligned with NIST, MITRE ATT&CK, and industry best practices.
• Drive continuous improvement of detection and response capabilities.

Security Monitoring & Detection

• Oversee SIEM platform administration and optimization.
• Ensure security use cases are developed, tested, and maintained.
• Reduce false positives and improve alert fidelity.
• Monitor security controls including:
• EDR/XDR
• Email Security
• Network Security
• Cloud Security
• Identity Security
• Data Security

Incident Response

• Lead cyber incident investigations and response activities.
• Coordinate containment, eradication, and recovery efforts.
• Manage ransomware, malware, phishing, insider threat, and advanced persistent threat investigations.
• Conduct post-incident reviews and root cause analyses.
• Maintain Incident Response Plans and Playbooks.

Threat Intelligence & Threat Hunting

• Integrate threat intelligence feeds into SOC operations.
• Lead proactive threat hunting exercises.
• Track emerging cyber threats and vulnerabilities.
• Map detections to MITRE ATT&CK framework.

Security Engineering & Automation

• Collaborate with security engineering teams to enhance security monitoring.
• Drive SOAR implementation and automation initiatives.
• Develop automated response workflows.
• Improve Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).

Compliance & Governance

• Support compliance requirements including:
• ISO 27001
• NIST CSF
• HIPAA
• GDPR
• DPDP Act
• 21 CFR Part 11 (where applicable)
• Ensure audit readiness and evidence management.
• Develop SOC metrics and executive dashboards.

Stakeholder Management

• Present SOC performance metrics to executive leadership.
• Support board-level cyber risk reporting.
• Coordinate with external MSSPs, incident response partners, and law enforcement when required.
• Act as the primary escalation point for critical cyber incidents.

Travel Estimate

5%

Job Scope

Internal Interactions (within the organization)

Cyber Security Team, IT Infrastructure Team, Cloud Infrastructure Team, DevOps Team, Applications Team, Business Stakeholders

External Interactions (outside the organization)

Vendor Management, OEMs, Security Service Providers, Cloud Security Service Providers

Geographical Scope

Global

Financial Accountability (cost/revenue with exclusive authority)

NA

Job Requirements

Educational Qualification

Bachelor’s degree in technical field (Computer Science, Engineering, Computer Application, Information Security), BSc IT. Master’s is preferred

Specific Certification

CISSP, CISM, CEH or other advanced foundational security accreditations.

SIEM Vendor Administrator Certifications (Splunk, CrowdStrike, IBM QRadar, Exabeam, Securonix etc.

Experience

Overall, 8 to 10 years of experience in Information / Cyber Security, with minimum 3 to 5 years in managing SOC Teams

Skill (Functional & Behavioural):

• SIEM Platforms – Splunk / CrowdStrike NG SIEM / IBM QRadar / Exabeam / Securonix.
• Security Technologies – EDR /XDR / SOAR / IDS /IPS / NDR / DLP / Email Security / CASB / Vulnerability Management / Threat Intelligence Platforms.
• Expertise in security standards, frameworks, and best practices (e.g., MITRE ATT&CK, Cyber Kill Chain, NIST CSF, CIS Controls, ISO 27001).
• Strong People Management and Mentoring Skills.
• Executive Communication and Board Reporting
• Crisis Management and Decision-Making
• Vendor and MSSP Management
• Strategic Cybersecurity Planning
• Budget and Resource Management
• Excellent written and verbal communication skills, with the ability to articulate highly technical concepts to both technical and non-technical audiences.
• Strong analytical and critical thinking skills, capable of dissecting complex security problems into manageable, solvable components.

Your Success Matters to Us

At Sun Pharma, your success and well-being are our top priorities! We provide robust benefits and opportunities to foster personal and professional growth. Join us at Sun Pharma, where every day is an opportunity to grow, collaborate, and make a lasting impact. Let’s create a brighter future together!