LAKSHMISHA RAJU R
SOC Manager
Bengaluru,KA
Summary
Strategic Cybersecurity Operations Executive with 15+ years of extensive experience in leading, managing, and executing all phases of Cyber Incident Response (IR), Digital Forensics (DFIR), and Threat Hunting within global enterprise environments. Proven success in establishing standardized global response practices and driving critical metrics: Reduced Mean Time to Detect (MTTD) by 80% through architecting and optimizing SIEM/XDR platforms. Improved Threat Response Times by 60% by developing automated security workflows and leading cross-functional IR teams. Ensured 100% compliance with internal and external security audits for four consecutive years, achieving Zero NC/Findings across large-scale enterprises.
Overview
18
18
years of professional experience
1
1
Certification
Work History
Security Operations Center Manager
Eze Castle Integration
06.2025 - 12.2025
- As a Security Operations Manager at an MDR/MSSP, I am focused on scaling 24x7 global SOC operations
- Reduced alert fatigue via SOAR by automating response of Spam and Phishing (75%) and P3Tickets (60%), ensuring strict SLA compliance of 98% for client security programs globally.
- Involved in POC of Autonomous AI SOC solutions like QeAlvar, D3 Security, Google Chronicle
- Provided strategic direction and vision for continuous SOC improvement strengthening the feedback loop between Threat Hunting and Incident Response.
- Collaborated with the SOC Engineering team to define, implement, and optimize 300+ SIEM/XDR rules, alerts, and correlation logic to boost the accuracy and efficiency of threat detection.
- Ensured compliance readiness and continuous improvement by conducting regular assessments and audits of SOC processes, technology stack, and controls.
- Reported comprehensive metrics on SOC performance, including security trends, incident response times, and overall operational effectiveness to executive leadership.
Lead Consultant
Wipro Limited
07.2020 - 06.2025
- Threat Hunting and Forensics: Spearheaded threat hunting operations leveraging the MITRE Attack framework to proactively identify and contain sophisticated threats. Performed in-depth forensic investigations and malware analysis, leading to 20% faster incident resolution.
- SIEM/XDR Architecture: Architected and executed two major SIEM migrations (QRadar to Securonix to Palo Alto Cortex XDR/XSIAM) covering 200,000+ Endpoints, 10K Servers, and 6K+ Cloud Assets, ensuring 99.9% platform uptime.
- Audit and Compliance: Successfully led 150+ audits, assessments, and compliance reviews, achieving a 100% closure rate with Zero NC/findings/observations for four consecutive years.
- Team Management: Managed and mentored a high-performing Cyber Defense team of 12-24 security professionals, driving skill development in detection engineering and incident handling.
Security Operations Cloud Engineer
Oracle India Private Limited
11.2018 - 04.2020
- Detection Engineering: Designed, administered, and optimized McAfee Nitro SIEM, creating 50+ custom use cases, rules, and correlation logic to improve threat detection accuracy and reduce false positives by 30%.
- Threat Intelligence Integration: Monitored Threat Intelligence feeds and performed 150+ web/IP reputation checks, providing actionable blocklist recommendations.
- Response Coordination: Led cross-team efforts with Incident Response, CSIRT, and GSOC, enhancing incident response efficiency and decreasing resolution time by 40%.
Senior Consultant
Infosys India Limited
08.2017 - 11.2018
- Managed ArcSight SIEM infrastructure, ensuring 99.9% system uptime and improving log processing speed by 40%.
- Optimized the management of 1,500 data source logs through tailored monitoring systems; reduced incident resolution times by 40%, establishing a more efficient response protocol that improved overall system reliability.
- Performed comprehensive risk advisory services, mitigating key risks by identifying key vulnerabilities, Data Loss Prevention (DLP), Data Exfiltration Monitoring, Phishing Campaign Analysis, and Endpoint Threat Detection and Monitoring.
Systems Security Engineer and SIEM Administrator
IBM India Private Limited
05.2008 - 08.2017
- Incident Triage: Monitored events and flows via IBM QRadar to detect security offenses, analysed false positives, and tracked incident responses, serving as the first line of investigation
- Documentation and Standardization: Developed 10 standard operating procedures (SOPs) and comprehensive documentation for SIEM usage, ensuring consistent adherence to processes by all operational staff.
- Performed daily health checks, performance monitoring, log source monitoring, storage and archive monitoring, and submitted weekly and daily report metrics to stakeholders and clients.
Education
Master of Business Administration (MBA) - Operations Management
IGNOU University
Bengaluru, India01.2017
Bachelor of Engineering (B.E) - Electronics and Communication
AMC Engineering College, VTU
Bengaluru, India01.2007
Skills
- SIEM: Splunk, Palo Alto Cortex XDR/XSIAM, Securonix SIEM, Elasticsearch (ELK Stack)
- XDR / EDR: Microsoft Defender, CrowdStrike EDR, SentinelOne
- Email Gateway: Proofpoint, Microsoft Exchange
- Forensics and Threat Hunt: Malware Analysis (Cuckoo and ANYRUN), Network Forensics (Wireshark), EnCase and FTK Image Analysis
- Threat Intelligence: Recorded Future, OSINT, MISP, i2oologic, Unit 42
- Operations management
- Cloud Security: Azure Cloud, GCP Cloud
- Scripting and Queries: SPL, KQL, XQL (Advanced SIEM Querying)
- Frameworks and GRC: MITRE Attack, Cyber Kill Chain, NIST, CIS
- Vulnerability Tools: Qualys, Rapid7, Tenable Nessus
Certification
- Certified Information Security Manager (CISM) (2024)
- Certified in Cybersecurity (CC) (2023)
- Google Cloud Digital Leader (CDL) (2023)
CORE COMPETENCIES
- Incident Response and Forensics
- Digital Forensics and Incident Response (DFIR) Execution and Case Management
- Threat Hunting (MITRE Attack Focused)
- Malware Analysis and Forensic Investigations.
- Phishing and SPAM mail Response.
- Detection and Analysis
- SIEM (Security Information and Event Management)/XDR (Extended Detection and Response) Event Monitoring / Swimlane XSOAR (Extended Security Orchestration, Automation, and Response)
- EDR (Endpoint Detection and Response)/Email Gateway Platform Monitoring
- Network Forensics and Intrusion Analysis (Wireshark)
- Service NowTicketing (ITIL Process)
- Leadership and Frameworks
- Global Incident Coordination and Stakeholder Management
- GRC, Auditing and Regulatory Compliance
- Strategic Planning and Vision
- Change Management and Cross Functional Collaboration
Timeline
Security Operations Center Manager
Eze Castle Integration
06.2025 - 12.2025
Lead Consultant
Wipro Limited
07.2020 - 06.2025
Security Operations Cloud Engineer
Oracle India Private Limited
11.2018 - 04.2020
Senior Consultant
Infosys India Limited
08.2017 - 11.2018
Systems Security Engineer and SIEM Administrator
IBM India Private Limited
05.2008 - 08.2017
Bachelor of Engineering (B.E) - Electronics and Communication
AMC Engineering College, VTU
Master of Business Administration (MBA) - Operations Management
IGNOU University