Website:
jumbo.consulting
Job details:
Security Operations Centre (SOC) Engineer
Location: Koramangala, Bangalore (Work from Office)
Company: Fintech Startup (Series A)
Compensation: Up to ₹60 LPA
About the Role
We are looking for an experienced Security Operations Centre (SOC) Engineer to build and operationalise a fintech-grade SOC function. This is a high-impact role focused on protecting critical financial infrastructure, strengthening detection capabilities, and leading incident response across cloud, infrastructure, identity, endpoint, and transaction systems.
Key Responsibilities
- Build and operationalise a fintech-grade SOC function across cloud, infrastructure, identity, endpoints, and transaction systems.
- Establish detection coverage aligned to MITRE ATT&CK and fraud threat models.
- Lead incident response activities including containment, eradication, recovery, and post-incident reviews.
- Reduce Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
- Design high-signal alerting strategies and improve SIEM use cases, telemetry coverage, and detection engineering.
- Define and track security KPIs and KRIs, including detection coverage, false positive rates, and incident severity trends.
- Ensure security monitoring is embedded into product launches with logging, telemetry, and auditability designed upfront.
- Align monitoring strategies with transaction flows, reconciliation pipelines, and money movement controls.
- Detect abnormal account behaviour, API abuse, fraud signals, and privilege escalation attempts.
- Hire, mentor, and develop SOC analysts and detection engineers.
- Establish escalation procedures, runbooks, and on-call processes.
- Support compliance initiatives across ISO 27001, PCI DSS, NIST, and regulatory audits.
Required Skills & Experience
- 8–12+ years of cybersecurity operations experience.
- Proven experience building, scaling, or maturing a Security Operations Centre (SOC).
- Strong expertise in incident response and security investigations.
- Hands-on experience with SIEM platforms and detection rule engineering.
- Deep knowledge of cloud security (AWS, GCP, or Azure), identity systems, and SaaS environments.
- Experience building security dashboards, operational metrics, and executive reporting.
- Strong leadership and stakeholder management skills.
- Ability to communicate technical risk to executive and non-technical audiences.
Preferred Qualifications
- Experience within fintech, payments, banking, or high-volume transaction environments.
- Knowledge of SOC 2, ISO 27001, NIST, and CIS frameworks.
- Experience with EDR, SOAR, DLP, CASB, MDM, and Email Security platforms.
- Familiarity with fraud detection models and transaction risk monitoring.
- Experience in Product Security, DevSecOps, and CI/CD Security.
- CISSP, CISM, CISA, or equivalent certifications preferred.
Why Join?
- Opportunity to build and shape the security function of a rapidly scaling fintech company.
- Competitive compensation up to ₹50 LPA.
- Equity participation in a high-growth business.
- Work on critical financial infrastructure with global impact.
- High ownership, strong engineering culture, and direct influence on security strategy.
Click on Apply to know more.