Qradar Jobs in Mumbai

Introduction A career in IBM Consulting is built on long-term client relationships and close collaboration to transform the hybrid cloud and AI landscape for some of the world's most innovative companies. Leveraging IBM's robust technology platforms, including Red Hat, and a strategic partner ecosystem, you'll accelerate impact and deliver meaningful change for clients. This role emphasizes curiosity, creativity, and a culture of evolution, fostering career growth and unique opportunities to make a groundbreaking impact. Your Role and Responsibilities As a SOC Analyst, you will monitor Information Security events using SIEM tools and contribute to safeguarding IT infrastructure by responding to potential threats. Your role involves: Researching security threats and providing insights into new and existing risks. Recommending and improving SOC security processes, procedures, policies, incident management, and vulnerability management. Evaluating, recommending, and resolving issues related to security solutions and assessing the security of new IT systems. Staying updated with emerging security threats and regulatory requirements. Working in a 24x7 Security Operation Centre (SOC) environment to ensure constant vigilance and response to threats. Required Education Bachelor s Degree Preferred Education Bachelor s Degree Required Technical and Professional Expertise 1+ year of experience in SIEM platforms such as QRadar, ArcSight, or Splunk. B.E./B.Tech/MCA/M.Sc. in Computer Science or IT with CEH Certification. Proven ability to monitor security events across SOC channels (SIEM, tickets, email, phone) and escalate based on severity. Expertise in threat modeling, use case development, and policy reviews for security monitoring tools. Preferred Technical and Professional Experience Self-motivated and ambitious with the ability to work independently toward goals. Creative and adaptable with excellent time management skills. Strong interpersonal skills, contributing effectively to team efforts. Join IBM Consulting, where your technical expertise and creative thinking will contribute to a safer digital landscape and help shape the future of cybersecurity. Qualification : B.E./ B.Tech/ MCA/ M.Sc. in Computer Science or IT + CEH Certified

Job Title: SOC Manager Location: Mumbai Education: Graduate / Post-Graduate Experience: 14 18 years in IT Security / Information Security Certifications Required: CISSP or CISM About the Role We are seeking an experienced and dynamic SOC Manager to lead our Security Operations Center (SOC) and drive our cybersecurity defense strategy. The ideal candidate will have deep expertise in IT security, excellent leadership capabilities, and a proven track record of managing 24/7 SOC operations. In this critical role, you will be responsible for monitoring, detecting, responding to, and preventing cybersecurity threats across the organization. Key Responsibilities Leadership & Team Management: Lead, mentor, and manage the SOC team to ensure high performance and continuous development. Foster a high-performance culture, emphasizing ownership, accountability, and collaboration. Act as the primary escalation point for high-priority security incidents. SOC Operations: Oversee 24/7 security monitoring and real-time threat detection across the organization s infrastructure. Ensure smooth operations of SOC processes and consistent coverage of security monitoring tasks. Incident Management: Direct and coordinate all aspects of the incident response lifecycle identification, containment, investigation, remediation, and recovery. Ensure timely escalation and communication with executive leadership during major incidents. Security Tools & Technologies: Manage and optimize security tools and platforms including SIEM, PAM, firewalls, proxies, endpoint protection, etc. Ensure tools are properly configured and tuned for optimal threat detection and minimal false positives. Threat Intelligence & Analysis: Utilize threat intelligence feeds and platforms to proactively monitor emerging threats. Correlate threat intelligence with internal data to assess risk and recommend defensive strategies. Process Improvement & Automation: Drive continuous improvement and automation of SOC processes using SOAR and related tools. Enhance response efficiency through playbooks, automation scripts, and workflow optimization. Cross-Team Collaboration: Collaborate with IT, Application, and Network teams to ensure unified security efforts and seamless incident resolution. Act as a bridge between technical teams and business stakeholders. Reporting & Metrics: Define and report on key SOC performance metrics (KPIs) such as mean time to detect (MTTD) and mean time to respond (MTTR). Provide executive-level reporting on security incidents, trends, and the overall threat landscape. Compliance & Risk Management: Ensure SOC operations adhere to internal policies and external standards (e.g., ISO 27001, NIST, SEBI regulations). Support audits and compliance initiatives by providing evidence, reports, and expert insights. Security Posture Enhancement: Evaluate and recommend new technologies and methodologies to enhance detection and response capabilities. Contribute to the development and refinement of the organization s cybersecurity strategy. Training & Development: Lead SOC training initiatives to ensure analysts stay updated on the latest threats, tools, and best practices. Foster a learning environment with a focus on upskilling and career development. Key Skills & Competencies Leadership: Proven experience leading SOC or security teams in a fast-paced, mission-critical environment. Communication: Excellent verbal and written communication skills; ability to present to senior leadership and external stakeholders. Analytical Thinking: Strong problem-solving abilities; capable of analyzing complex security incidents and identifying root causes. Time Management: Exceptional organizational and prioritization skills; able to respond rapidly to high-impact incidents. Attention to Detail: Meticulous in investigation, documentation, and reporting. Mandatory Requirements 14 18 years of relevant experience in IT Security or Information Security CISSP or CISM certification (mandatory) Strong background in incident management, SOC tools, and regulatory compliance Hands-on experience in security monitoring, SIEM, SOAR, and threat hunting Be at the forefront of protecting a critical enterprise from evolving cyber threats Lead a talented team and shape the future of cybersecurity operations Exposure to a wide range of advanced tools and technologies Work in a culture that values innovation, accountability, and continuous learning Qualification : Graduate / Post-Graduate

Job Title: Assistant Manager / Deputy Manager IT Security Location: Mumbai Education: Graduate / Post-Graduate Experience: 4 10 years in IT & IT Security (minimum 2 years in a relevant security role) Role Overview We are seeking a driven and technically skilled Assistant Manager / Deputy Manager IT Security to join our cybersecurity team in Mumbai. This role focuses on Vulnerability Management, Penetration Testing, and Security Assessments across infrastructure and applications. You ll play a key role in identifying security risks, conducting security testing, and ensuring the overall resilience of our systems against evolving cyber threats. Key Responsibilities Perform Vulnerability Assessments and Penetration Testing (VAPT) on network infrastructure, web and mobile applications, and thick-client applications. Conduct configuration reviews for operating systems (Linux, UNIX, Windows) and databases, as well as security devices such as firewalls, routers, and switches. Perform manual and automated web application testing. Conduct source code reviews using both automated tools and manual techniques. Prepare comprehensive technical reports, including risk ratings and mitigation strategies. Ensure timely delivery of status updates, findings, and final reports to stakeholders. Collaborate with development and production teams for false-positive elimination. Stay updated with the latest threats, vulnerabilities, attack vectors, and exploits. Create and share threat intelligence reports on emerging security threats. Conduct cyberattack simulations and Red Team exercises to assess organizational preparedness. Support the design and evaluation of security architectures for infrastructure and applications. Required Skills & Experience Technical Experience (minimum 2 years in the below areas): Vulnerability Assessment and Penetration Testing (VAPT) Application Security Testing (Web, Mobile, APIs, Thick Clients) Patch Management and System Hardening Network Security Architecture Review Cybersecurity assessments and Red Teaming Security architecture design and review Hands-on experience with security tools such as: Nessus, Acunetix, IBM AppScan, nmap, Burp Suite, etc. Strong knowledge of Linux / UNIX systems (e.g., IBM AIX, Sun Solaris, HP UX) Familiarity with Active Directory and identity/access management Solid understanding of security frameworks and compliance requirements Experience preparing professional-grade PowerPoint presentations for technical/non-technical stakeholders Core Competencies Analytical Thinking: Ability to break down complex issues into actionable insights. Problem Solving: Strong troubleshooting skills in a dynamic IT security environment. Communication: Excellent written and verbal skills; capable of conveying complex security topics to different audiences. Collaboration: Proven ability to work across departments to deliver cohesive security solutions. Attention to Detail: High standard of accuracy in testing, documentation, and reporting. Work on cutting-edge security assessments across diverse platforms. Collaborate with a highly skilled team of cybersecurity professionals. Engage in Red Team operations and real-world attack simulations. Stay ahead with continuous learning in the ever-evolving threat landscape. Be a key player in strengthening the organization's overall security posture. Qualification : Graduate / Post-Graduate