Lead Cybersecurity Analyst - Threat Detection & Incident Response

Our client, a rapidly expanding financial services organization, is seeking an experienced Lead Cybersecurity Analyst to manage its Threat Detection and Incident Response (TDIR) program. This critical leadership role will be responsible for safeguarding the organization's digital assets by proactively identifying, analyzing, and responding to security threats. You will lead a team of skilled analysts, develop and implement advanced detection strategies, and ensure rapid and effective incident mitigation. The position requires a deep understanding of current threat landscapes, security technologies, and incident response methodologies. Key responsibilities include: Leading and mentoring a team of cybersecurity analysts focused on threat detection and incident response. Developing, refining, and implementing advanced threat detection rules and use cases across SIEM, EDR, and other security tools. Overseeing the incident response process, from initial triage to containment, eradication, and recovery. Conducting in-depth forensic investigations of security incidents. Performing threat hunting activities to proactively identify potential security breaches. Developing and maintaining incident response playbooks and procedures. Collaborating with IT operations, application development, and business units to integrate security into all aspects of the organization. Managing relationships with external security vendors and threat intelligence providers. Staying current with emerging threats, vulnerabilities, and cybersecurity trends. Reporting on security posture, incident trends, and response effectiveness to senior management. The ideal candidate will possess a Bachelor's degree in Cybersecurity, Computer Science, or a related field, along with at least 7 years of progressive experience in cybersecurity, with a significant focus on threat detection and incident response. Proven experience leading security operations teams and managing complex security incidents is essential. Strong technical expertise in SIEM platforms (e.g., Splunk, QRadar), EDR solutions, network security monitoring, and forensic analysis tools is required. Certifications such as CISSP, GIAC (GCIH, GCFA), or equivalent are highly desirable. Excellent analytical, problem-solving, and communication skills are paramount for success in this vital role within **Nagpur, Maharashtra, IN**.