Gradient Cyber
Website:
gradientcyber.com
Job details:
SOC Lead
Location: Bangalore
Work Mode: Hybrid / In-office (as required)
Employment Type: Full-time
Important Note (Please Read Before Applying)
- This role is based out of Bangalore
- Interviews will be conducted in person in Bangalore between May 7th or May 8th
- Please apply only if you are available to attend in-person interviews during this period
Role Overview
We are looking for a SOC Lead to manage and scale our Security Operations Center at Gradient Cyber. This role is responsible for overseeing day-to-day SOC operations, leading a team of analysts, and ensuring high-quality threat detection, incident response, and client communication.
You will act as the first line of leadership for SOC analysts, ensuring operational excellence, adherence to SLAs, and continuous improvement in detection and response capabilities. This role requires a strong balance of technical expertise, operational discipline, and team leadership.
Key Responsibilities
- Lead and manage a team of SOC analysts across multiple shifts
- Oversee real-time monitoring, detection, and response to security incidents
- Ensure adherence to SLAs, response times, and client communication standards
- Act as an escalation point for high-severity incidents and critical alerts
- Drive incident investigation, root cause analysis, and resolution
- Improve detection capabilities by refining use cases, rules, and playbooks
- Work closely with DevOps, engineering, and threat intelligence teams
- Ensure proper documentation of incidents, processes, and runbooks
- Conduct regular quality checks and performance reviews for analysts
- Identify gaps in SOC operations and implement process improvements
- Support onboarding of new clients and ensure smooth operational transitions
What We’re Looking For
- 5+ years of experience in SOC / Cybersecurity Operations
- Prior experience in a lead or senior analyst role managing teams
- Strong hands-on experience with:
- SIEM platforms (e.g., Splunk, Elastic, Sentinel, QRadar)
- EDR/XDR tools and endpoint security solutions
- Incident response, threat hunting, and log analysis
- Solid understanding of:
- Network protocols (DNS, TCP/IP, HTTP/S, etc.)
- MITRE ATT&CK framework
- Indicators of Compromise (IOCs) and attack patterns
- Experience in handling high-severity incidents and escalations
- Strong communication skills, especially in client-facing scenarios
- Ability to manage shifts, team schedules, and operational coverage
Nice to Have
- Experience in Managed Security Services (MSSP / MXDR environments)
- Certifications like Security+, CEH, CySA+, or similar
- Exposure to automation in SOC (SOAR tools, scripting, etc.)
- Experience working with global clients and 24/7 SOC environments
Why Join Us
- Work on real-world cyber threats and high-impact incidents
- Be part of a fast-growing MXDR and cybersecurity operations environment
- High ownership, leadership visibility, and growth opportunities
- Opportunity to shape and scale SOC operations from the ground up
Click on Apply to know more.