Security Operations Manager

This role is for one of the Weekday's clients

Salary range: Rs 3500000 - Rs 5000000 (ie INR 35-50 LPA)

Min Experience: 8 years

Location: Chennai

JobType; full-time

We are seeking a Security Operations Manager to lead and continuously enhance security operations across cloud, infrastructure, endpoints, and SaaS environments. This role has a strong focus on AWS-based security, incident response, and regulatory-aligned security operations. The position owns day-to-day security operations, major incident management, and strategic security initiatives, working closely with the Information Security leadership to deliver measurable improvements in security posture, resilience, and compliance.

Requirements

Key Responsibilities

Security Operations & Incident Response

• Lead security operations activities across cloud, infrastructure, endpoints, and SaaS platforms.
• Act as the primary escalation point for high-impact and complex security incidents.
• Own incident classification, response coordination, regulatory notifications, and post-incident reporting in line with DORA and NIS2 requirements.
• Ensure incident detection, investigation, and resolution meet EU regulatory reporting timelines.

Vulnerability & Risk Management

• Enhance the vulnerability management framework by improving triage processes, implementing risk-based prioritization, and tracking remediation progress.
• Strengthen reporting and metrics to align with European regulatory expectations and operational resilience objectives.
• Drive vulnerability remediation programs in collaboration with IT and engineering teams.

Monitoring, Detection & Threat Intelligence

• Improve threat and attack visibility through centralized logging, monitoring, and detection capabilities.
• Provide strategic oversight of SIEM, EDR/XDR, MDM, IAM, and related security tooling.
• Lead threat intelligence activities and assess threats through a European regulatory and risk-based lens.
• Apply frameworks such as MITRE ATT&CK to improve detection and response effectiveness.

Cloud & Platform Security

• Strengthen cloud security controls within AWS environments using best practices and native services.
• Oversee and optimize the use of AWS security services such as CloudTrail, CloudWatch, GuardDuty, Security Hub, and IAM.
• Partner with IT and engineering teams to embed security-by-design principles across systems and applications.

Security Programs & Initiatives

• Drive security initiatives including data loss prevention (DLP), penetration testing, and security tool optimization.
• Support security architecture reviews to ensure resilience, scalability, and regulatory alignment.
• Lead information security awareness initiatives, including phishing simulations and employee training programs.

Governance, Risk & Compliance

• Contribute to governance, risk, and compliance efforts across frameworks such as ISO 27001, DORA, and NIS2.
• Support internal and external security audits and regulatory examinations.
• Translate regulatory requirements into actionable security operations and controls.

Required Skills & Experience

Must-Have

• Strong experience with AWS security services (CloudTrail, CloudWatch, GuardDuty, Security Hub, IAM).
• Proven background in SOC or security operations with hands-on SIEM and EDR/XDR experience.
• Accountable incident lead experience for EU-regulated security incidents.
• Hands-on experience managing DORA and NIS2 incident response requirements.
• Experience supporting EU regulatory audits, including ISO 27001.
• Ability to convert regulatory obligations into practical, operational security controls.
• Experience with threat intelligence and frameworks such as MITRE ATT&CK.
• Strong written and verbal communication skills.

Nice-to-Have

• German language proficiency.
• Experience interacting directly with European regulators or supervisory authorities.

Eligibility / Qualifications

• Undergraduate or Postgraduate degree in any discipline.

Key Skills

• Security Operations
• AWS Security
• DORA & NIS2
• SIEM & EDR/XDR
• IAM
• Data Loss Prevention (DLP)